I am always interested in the integration of identity, authentication and apps and Apple’s Platform SSO continues to evolve in a promising direction.
We work a lot with Microsoft’s EntraID and the PSSO integration is improving from an MSFT perspective too: macOS Platform Single Sign-on (PSSO) overview – Microsoft Entra ID | Microsoft Learn.
In the video above we showcase how you can sign into the Microsoft Azure portal with the Google Chrome browser (typically, Chrome does not support the MSFT SSO Extension on macOS). This is achieved via:
- PSSO registration using a Passkey in Microsoft Authenticator that links the device and the EntraID credential
- Opening an incognito window in Chrome and navigating to portal.azure.com
- Selecting the Passkey from the Keychain
- Using TouchID / Secure Enclave to authorise the use of the Passkey
- Result: passwordless sign into portal.azure.com via a Passkey and PSSO in a Chrome web browser on macOS
A goal here is robust authentication methods that are non-phishable and reducing the reliance/frequency of entering passwords.
Reach out if you’re interested in knowing more on how to implement this.
Perhaps you can help with this next time you are over. Sent from my iPhone
Passkeys yes, no problem. PSSO is about integrating into your organisational IdP – not really something that you’d have the need for 😉