...
The Computer Logon MA solution supports both Entra ID joined PCs and On-Prem AD joined PCs. The
* The hybrid joined PC is treated as On-Prem joined PC.
You can use the same MFA provider for both Entra ID joined PCs and On-Prem AD joined PCs, or you can use a different MFA provider for Entra ID joined PCs and On-Prem AD joined PCs.
* You need to enter the MFA Provider details for both Entra ID joined PCs and On-Prem AD joined PCs, even if you only have one of them in your environment.
Microsoft Entra MFA
| Key | Value | Comment | ||
|---|---|---|---|---|
| Client ID |
| |||
| Authorization Endpoint | https://login.microsoftonline.com/TENANT-ID/oauth2/v2.0/authorize | Replace "TENANT-ID" with your Tenant ID | ||
| Token Endpoint | https://login.microsoftonline.com/TENANT-ID/oauth2/v2.0/token | Replace "TENANT-ID" with your Tenant ID | ||
Token Download Endpoint | SafeID Token Service (Cloud) https://admin.safeid.io/api/ComputerLogon/GetTokens SafeID Token Service (On-Prem) https://FQDN/api/ComputerLogon/GetTokens Deepnet DualShield https://FQDN/sso/v1/authc/oauth/connect/authorize | Replace "FQDN" with the FQDN of your SafeID Token Service or Deepnet DualShield MFA server |
...