Configure automatic sign in with an Active Directory domain account when there is no Azure AD domain account

Options

Description

Enables the use of Azure Active Directory (Azure AD) accounts for automatic sign in if your users' machines are Domain Joined and if your environment isn't hybrid joined. If you want users automatically signed in with their Azure AD accounts instead, Azure AD join (See https://go.microsoft.com/fwlink/?linkid=2118197 for more information) or hybrid join (See https://go.microsoft.com/fwlink/?linkid=2118365 for more information) your environment. On every launch, Microsoft Edge tries to sign in using this policy, as long as the first profile being launched isn't signed in or an auto sign in doesn't happen before. If you configure the 'BrowserSignin' (Browser sign-in settings) policy to disabled, this policy doesn't take any effect. If you enable this policy and set it to 'SignInAndMakeDomainAccountNonRemovable', Microsoft Edge automatically signs in users that are on domain-joined machines using their Azure AD accounts. If you set this policy to 'Disabled' or don't set it, Microsoft Edge doesn't automatically sign in users that are on domain-joined machines with Azure AD accounts. From Microsoft Edge version 89, if there's an existing on-premises profile with 'RoamingProfileSupportEnabled' (Enable using roaming copies for Microsoft Edge profile data) policy disabled, and if the machine is now hybrid joined, that is, it has an Azure AD account, it autoupgrades the on-premises profile to Azure AD profile to get full Azure AD sync facilities. From Microsoft Edge version 93, if policy 'ImplicitSignInEnabled' (Enable implicit sign-in) is disabled, this policy doesn't take any effect. From Microsoft Edge version 94, if policy 'OnlyOnPremisesImplicitSigninEnabled' (Only on-premises account enabled for implicit sign-in) is enabled, and this policy is set to 'SignInAndMakeDomainAccountNonRemovable', it takes effect even on hybrid-joined environment. Microsoft Edge automatically signs in users using their Azure AD domain account even if there are Microsoft Account (MSA) or Azure AD accounts. Policy options mapping: * Disabled (0) = Disabled * SignInAndMakeDomainAccountNonRemovable (1) = Sign in and make domain account non-removable Use the preceding information when configuring this policy.