I set up Cloud Kerberos last year for my organization so we could use Windows Hello for Business on devices that are only in Entra. It was working great until about a month ago. Now, when I try to access any on-prem resources, I'm either prompted to enter my credentials manually or I have to log in using my username and password. I've checked that the KDC certificate is still active and confirmed that nothing in the configuration has changed. What else should I look at to troubleshoot this issue?
3 Answers
Actually, I’m a domain admin and have been able to use this feature despite the recommendations. One workaround is to adjust the password replication policy for administrators on the Domain Controller Kerberos Object. It's strange that it's suddenly stopped working for you, so I get why you’re looking for answers.
In Microsoft Intune, you might want to try turning off the setting called **Use Certificate For On-Prem Auth**. That could help resolve the issue you're facing.
You can also test the Active Directory object to see if it passes through the login correctly. Just a heads up, admin accounts don’t typically work with this feature.
Related Questions
Can't Load PhpMyadmin On After Server Update
Redirect www to non-www in Apache Conf
How To Check If Your SSL Cert Is SHA 1
Windows TrackPad Gestures