2 Replies Latest reply on Aug 10, 2018 9:43 AM by blue_calx

    Office 365 Activation problems

    blue_calx Novice

      Hello,

       

      I am in the process of setting up a new VDI environment and having a very hard time with Office 365 account persistence. I am running an instant clone non-persistence desktop pool with Windows 10 Enteprise Build 1709.

      I have tried Office 365 builds 1708 and 1803. I have authentication token roaming setup to the UEMProfile network share via GPO and capturing <LocalAppData>\Microsoft\Credentials via UEM (in the Office 2016 Shared Settings template).

       

      Office 365 account persistence works for a bit but then after a while, this happens:

       

      Capture.PNG

       

      I have tried having these Office 365 builds via App Volume or baked into the master image. Still the same results. I am pulling my hair out on this one.

       

      If I click "Fix Me" I have to sign back into Office 365 or sometimes just reactivate. Shared Computer activation is definitely enabled.

       

      Has anyone ran into this problem? If you don't have this problem and have a similar setup as mine, what Office 365 build are you using? You can find a build history here:

      Update history for Office 365 ProPlus (listed by date) | Microsoft Docs

       

      I would appreciate any help on this. My next step is to open a case with VMware if I can't get it resolved. Thank you!!

        • 1. Re: Office 365 Activation problems
          JohnTwilley Enthusiast

          I have used various versions of O365 Office 2016 (MSI or Click-to-Run) versions without any issues.

           

          Technically, if everything is setup correctly, you shouldn't even need to roam the cached credentials. (Credential Manager) Like does your user UPN match the SMTP address?  (It Should)

           

          First of all, I'd check to see if you O365 Tenant has Modern Authentication enabled.  It used to be OFF by default, but sometimes in early 2017 Microsoft changed it to ON by default.

          If it's off, you use Basic auth.  When it ON, you try Modern Auth first, then fall back to Basic auth if you app needs it...like Office 2010 or Office 2013 without the EnableADAL registry key.

          Modern Auth = Success

           

          Also, ensure you have the UEM ADMX file for Office 2016 setup to "Automatically activate Office with Federated organization credentials".

          O365.JPG

           

          Hopefully, this will lead you down the path towards success!

          • 2. Re: Office 365 Activation problems
            blue_calx Novice

            Thank you for the suggestions! I am testing this with a O365 account that is cloud only. I do not have ADFS SSO setup. The tenant was setup this year so I am sure modern authenication is enabled. I will try that disabling that GPO setting. Maybe O365 is excepting federation account but it's not setup. Thanks!