IT Connect
Your connection to information technology at the UW

Azure AD Federated Authentication Expected Experience

This page describes via words and pictures what an uw.edu Azure AD user who is federated can expect to experience at sign-in.

Note: you may be asked to choose a work/school account or personal account immediately after step 1. See https://itconnect.uw.edu/wares/msinf/other-help/faq/aad-terms/#accountTypes for more info.

Step 1: The Microsoft sign-in page.

https://login.microsoftonline.com should be the URL of the Microsoft sign-in page.

You should enter your user principal name (UPN), e.g. pottery@uw.edu.

Step 2: Redirection to UW identity provider

The Microsoft sign-in page detects your @uw.edu UPN and begins the process of redirecting you the UW identity provider. During this process, you should see this screen first:

That will be followed by a very brief stop at sts.netid.washington.edu (the UW ADFS service):

Which will quickly be followed by a redirect to idp.washington.edu (the UW identity provider). You should end up here:

Step 3: UW identity provider

At the UW identity provider, you will enter your UW NetID and password. Note that your UW NetID is not exactly the same as your UPN, e.g. pottery.

Step 4: Redirect back to Microsoft sign-in page

Assuming you entered a valid UW NetID and password, you’ll be redirected back to the sts.netid.washington.edu (the UW ADFS service):

Which will quickly be followed by a redirect to the Microsoft sign-in page. You should end up here:

Note the UW logo at the top, the UPN you entered in step 1, and the UW-specific help text at the bottom.

You can select either option. After selection, you should be redirected to the application that started the Azure AD sign-in process.

Last reviewed April 28, 2020