Modernised SSO for Linux in Microsoft Intune with Entra ID Integration

Key Takeaways

• Modern SSO for Linux: Brings an easy sign-in experience similar to Windows and macOS
• Improved Security: Offers phishing-resistant authentication for safer access
• New Identity Broker: Uses a modern C++-based Microsoft Identity Broker instead of the legacy Java broker
• Better Integration: Deep integration with Microsoft Entra ID for authentication and access control
• Smaller footprint with improved performance on Linux devices

Modernised SSO for Linux in Microsoft Intune with Entra ID Integration! Modernised SSO for Linux enables users to sign in easily and securely on Linux devices. The login process is simple, similar to what you see on Windows and macOS, so users don’t have to struggle with complex steps. It also adds better security, helping protect users from phishing attacks. Since it works closely with Microsoft Entra ID, users can quickly and securely access their apps and resources with less effort.

Modernised SSO for Linux in Microsoft Intune with Entra ID Integration

This feature uses a new Microsoft Identity Broker built in C++, which replaces the older Java-based system in Microsoft Intune. This new broker is faster, lighter, and more efficient. It helps reduce system load and improves Single Sign-On (SSO) on Linux devices, so users can log in more quickly and reliably.

• How to setup Microsoft Enterprise SSO plug-in for Apple macOS Devices using Intune
• How RDS AAD Auth Transforms SSO for Windows 365 CloudPC and Azure Virtual Desktop
• Workaround to FIX SSO Issue with Citrix and Windows 11 24H2
• Enable Entra Website SSO using Configuration Profiles for Edge Browser using Microsoft 365 Admin Center
• New Entra SSO and Device Management Dialog – Allow my Organization to Manage this Device Option is Enabled

Advanced SSO and Secure Authentication for Linux with Microsoft Identity Broker

The new Microsoft Identity Broker improves how Linux devices connect with Microsoft Entra ID by enabling a stronger trust relationship through full device join. This allows devices to receive secure, device-based authentication tokens instead of relying only on basic enrollment.

As a result, organizations can implement phishing-resistant multi-factor authentication (PRMFA) methods such as certificates, smart cards, and security keys. It also brings a consistent Single Sign-On (SSO) experience across platforms, including iOS, Windows, and macOS, and works with apps using Microsoft Authentication Library (MSAL).

Sign up to get the best of How To Manage Devices straight to your inbox!

• Supports safer login methods like certificates and security keys
• Same smooth login experience across Linux, Windows, macOS, and iOS
• Users don’t need to sign in again and again (PRT helps)
• No Java needed, so it runs lighter and quicker
• Supports Conditional Access and device compliance policies

Need Further Assistance or Have Technical Questions?

Join the LinkedIn Page and Telegram group to get the latest step-by-step guides and news updates. Join our Meetup Page to participate in User group meetings. Also, join the WhatsApp Community  and the Whatsapp channel to get the latest news on Microsoft Technologies. We are there on Reddit as well.

Author

Anoop C Nair is a Workplace Technology solution architect with 25+ years of experience. Microsoft Certified Trainer. Microsoft MVP from 2015 onwards for consecutive 11+ years! He is a blogger, Speaker, and Founder of HTMD Community and HTMD Conference. His main focus is on Device Management technologies like Intune, Windows, and Cloud PC. He writes about technologies like Intune, SCCM, Windows, Cloud PC, Entra, and Microsoft Security.