Problems with WebAuthN in Microsoft Apps

jaylay · January 27, 2025, 10:13am

Hi all,
i am having trouble using WebAuthN with Microsoft Apps. We use shibboleth to login to Microsoft EntraID, which works relatively good. Since we are introducing Privacyidea into our Shibboleth login workflow we are encoutering problems with WebAuthN specifically. TOTP is not a problem though.

The Problem:
Upon clicking the login button in the menuMicrosoft Office Apps open a little extra window where you enter your login data. This little window seems to be a somewhat castrated webbrowser that does not respond (correctly) to WebAuthN requests. It can not link the Yubikey I use with the WebAuthN request.

Question:
Has anybody solved this problem already? Has anyone already connected a PrivacyIDEA (with Shibboleth) to EntraID? How did you solve the WebAuthN problem?

Thanks for your help!

nilsbehlen · January 29, 2025, 8:38am

hi, does that “castrated webbrowser” have a console (dev-tools, pressing F12)? There could be more information.
Or can you post a screenshot?

jaylay · March 3, 2025, 10:31am

@nilsbehlen this did not lead to any results

HOWEVER: We could fix the problem by updating from End-of-Life shibboleth IDP v4 to shibboleth IDP v5. The corresponding fudiscr plugin is now also on the newest possible version and the problem is completely solved.

we are happy

nilsbehlen · March 3, 2025, 11:30am

thats good, thanks for sharing your solution.