Add web sign-on experience to support to RDP sessions to support modern authentication and role-based access in Entra ID

Hello

I'm afraid that currently it's not possible. Microsoft does not provide any mechanism for a third party to integrate here. They do not support this workflow at all with third-party clients.

The only way to make this work is by reverse engineering what the Microsoft clients do. Our RDP backend, FreeRDP, has a partial implementation but it's not reliable and not something we can ship at the moment. We keep will keep monitoring the status of that feature, but right now it doesn't work well and is very fragile as Microsoft often makes backend changes - sometimes only in specific regions - that completely break the functionality.

For now, the best option to set your RDP sessions to open in "External" mode and make sure "Enable Entra ID SSO" is enabled in the authentication options.

Please let us know if you have further questions or comments

Kind regards,