I saw this post today from Scott Breen at Microsoft, a great guy that I used to work with off and on over the last six years I was at Microsoft.
In this video, he steps through the configuration of using Apple’s Platform SSO with password sync for an EntraID Join of a macOS device that will be shared by multiple users. This is of course a very common scenario in education where labs of iMacs are common, or shared devices in a library context is also prevalent.
This builds on my earlier blog post last month announcing the launch of Microsoft’s PSSO integration with EntraID and highlights the effort Microsoft is clearly making in terms of improving the macOS experience within Intune.
Given many educational organisations already own M365 A3 licenses and many corporates have M365 E3 (both of which contain Intune and EntraID licensing – see this post), it reduces the cost of ownership to securely and easily integrate Macs into an organisational fleet of devices.
Reminder: this functionality is still currently in preview (as of June 2024), but watch this space once it goes public.
I am wondering if you have tried to log into company portal with other users. I don’t think you will be able to apply user policies even though multiple users can log into the same device
Hi Thomas,
I’ve not tried that yet. I did set up some testing last week with Intune + MacBook and User Affinity with Passkeys for a zero trust experience. No passwords required was a really cool experience. This integrated PSSO nicely.