Hi alisterblack​, As walkerm15352597​ said, the behavior you describe in your reply above is how it works currently. The IDP part of the process handles authentication as expected for us. The part I'm trying to eliminate or automate is the part where the Adobe application wants users to click "sign in" and then enter their email address and click "Enterprise ID" to be passed off to the IDP. There should be a way to detect that the logged in user has a federated ID and sign in that way without requiring user intervention. This is how it works for many of our other applications that support SSO (Microsoft Office, Zoom, ShareFile, etc.). Some of the apps I've configured have a deployment, registry, or group policy setting to tell the application to log in using SSO automatically. I'm looking for something like that for our Adobe applications.
... View more