Tag: Active Directory Federation Services

Enable Google Chrome v.54 ADFS 3.0 Single Sign-On (SSO)

Enable Google Chrome v.54 ADFS 3.0 Single Sign-On (SSO)

Using Single Sign-On with Google Chrome

In this post we will enable SSO using Google Chrome Version 54. Most posts out on the internet state that enhanced protection must be disabled. This of course leaves you exposed to a Man in the Middle Attack. So do you really need to disabled Extended Protection?

Well… The answer is no. Running the below command from an elevated PowerShell window will modify your ADFS user agent string. As you can see Chrome/51.0.2704.79 is added to the list. We have tested with Chrome version 54 (latest version at the time of writing this post).

Run the below command from an elevated PowerShell window on the primary ADFS server.

Set-AdfsProperties -WIASupportedUserAgents @("MSAuthHost/1.0/In-Domain","MSIE 6.0","MSIE 7.0","MSIE 8.0","MSIE 9.0","MSIE 10.0","Trident/7.0", "MSIPC","Windows Rights Management Client", "Mozilla/5.0 (Windows NT 10.0; Win64; x64)", "AppleWebKit/537.36 (KHTML, like Gecko)", "Chrome/51.0.2704.79", "Safari/537.36", "Edge/12", "Edge/14")