Azure AD SSO

New Contributor

Hi all,

I have setup Azure AD SSO for accessing our JAMF Pro Cloud host. Each time I login I get this error:


It only works if I use an incognito window from Chrome.

Any way I can get it to work using our default browser (Edge) or at least without having to use an incognito window?


Contributor II

For me this also sometimes happens on some clients. Clean all settings in browsers typical helps or use incognito. Don´t know if that is based on an setup error or it is just the browser sessions that have bugs

New Contributor

this happened to me for a while and it turned out that the token expiration time was wrong. see if the expiration time matches in azure and jamf.

Contributor II

I cannot see any token expiration date in azure on the Jamf app registration. can only see that In Jamf it should be set to 86400 which is max as far I can read

New Contributor III

I only got it to work by disabling SAML token expiration

Valued Contributor II

For future Googlers: I'm having issues like this with another integration, i.e.: Ping Identity.  It is not possible to disable the expiration there, only set the token timeout to a ridiculously high value.

Valued Contributor II

I'm curious if anyone ever came up with a solution to this? I wasn't having issues until I upgraded my OS Monterey. Since then, it fails SSO in Safari every time. Other browsers seem to be fine though. Issue has persisted through Ventura beta testing. It feels like an Azure config issue somewhere.