Azure AD Cloud-only Authentication Expected Experience

Last updated: August 11, 2022

This page describes via words and pictures what an uw.edu Azure AD user with cloud-only authentication without Duo 2FA can expect to experience when signing in.

Step 1: The Microsoft sign-in page.

In the search window of the browser, you should see https://login.microsoftonline.com on the Microsoft sign-in page.

Enter your user principal name (UPN), e.g. pottery@uw.edu.

Note: You may be asked to choose a work/school account or personal account at this point. Learn more.

Important: The "Can't access your account?" link in this Microsoft interface is non-functional for UW Microsoft accounts. Clicking it will result in a "Get back into your account" page which will not be constructive. To recover your account, use the UW NetID system.

Step 2: Enter password in Microsoft sign-in page

The Microsoft sign-in page detects your @uw.edu UPN and responds by giving you the appropriate cloud-based authentication experience. This means the user will enter their password in the Microsoft sign-in page. This is the next page in the sequence:

Note the UW logo at the top, the UPN you entered in step 1, and the UW-specific help text at the bottom.

You enter your UW NetID password into the password field.

Important: The "Forgot my password" link in this Microsoft interface is non-functional for UW Microsoft accounts. Clicking it will result in a "Get back into your account" page which will not be constructive. To recover your account, use the UW NetID system.

Step 3: Stay signed in (SSI)

You should be redirected to the following page, with a question about whether you want to stay signed in:

Note the UW logo at the top, the UPN you entered in step 1, and the UW-specific help text at the bottom.

You can select either option. If using a public or shared computer, such as a kiosk, you should choose No.

After selection, you should be redirected to the application that started the Azure AD sign-in process.