If the list is empty, Secure Mail does not auto-populate passwords. This is a comma-separated format, such as, .uk.
Trusted AD FS Hostnames: Use this policy to define a list of trusted AD FS hostnames for webpages where the password populates during Office 365 OAuth authentication. This list can either contain a default value or vanity URLs, but cannot be empty. Trusted Exchange Online Hostnames: Use this policy to define a list of trusted Exchange Online hostnames that use the OAuth mechanism for authentication while configuring an account. Policies common to iOS and Android devices: 
Exclude any hostnames related to OAuth from the Background services policy. Select the Tunneled - Web SSO option in the Network access policy. Set Use Web SSO for tunneling policy to On. Web SSO for tunneling policy: Use this policy to tunnel the OAuth traffic to go over Secure Browse. Custom user agent for modern authentication: Use this policy to change the default user agent string for modern authentication. 
Use Modern authentication for O365: Use this policy for OAuth protocol during authentication. The default configuration is Do not use OAuth. User OAuth with client Certificate: Use this policy if Office 365 is configured to perform certificate-based authentication. Users must provide their username and password and optionally a multifactor authentication code for the OAuth flow. Use OAuth with Username and Password: Use this policy for OAuth protocol during authentication. Do not use OAuth: Use this policy for basic authentication during account configuration. This policy has the following values that you must configure: Office 365 authentication mechanism: Use this policy to indicate the OAuth mechanism used for authentication while configuring an account on Office 365. For details, see the Microsoft documentation on Office 365 URLs and IP address range.Ĭitrix Endpoint Management policy prerequisitesĮnable the following policies in the Citrix Endpoint Management console: Enable Office 365 endpoints, URLS, and IP address ranges in your firewall to ensure optimum network connectivity. Enable modern authentication (OAuth) for Microsoft Office 365. When they sign on to Secure Mail, users authenticate by using a client certificate, instead of typing their credentials. Secure Mail users with iOS devices can take advantage of certificate-based authentication when connecting to Office 365. Modern authentication is OAuth token-based authentication with user name and password. 
Secure Mail supports modern authentication with Microsoft Office 365 for Active Directory Federation Services (AD FS) or Identity Provider (IDP).
0 kommentar(er)
