Thank You

My case numbers are in Authentication issues with latest version of 365 apps. : VMwareHorizon (reddit.com) if needed.

@JeroenTil Would you be able to share your case#, since you got a confirmation from MS?

Interesting, although I'm not sure if this is the case for everyone.

For those of us on the reddit thread, it seems be a network card/driver issue.

Switching to E1000 from VMxnet3 resolves the issue.

Really?!

This is what Microsoft said. it looks like something with the authentication.

I tried that too and it didn't fix it for me, interesting that I didn't see that in the reddit thread I am there as well looking for that fix. 

Like you said maybe it's something else.

I wanted to point out that were still having Authentication Issues after running the Support and Recovery Tool.

We have resorted to Disabling Modern Auth as suggested by VMware.  I hope Microsoft gets this resolved soon, as disabling Modern Auth makes me nervous...

    ref: Microsoft Store Apps stop working in VDI after applying Microsoft Monthly Patch (KB5034763) (97111) ...

Start and stop a trace using DEM if you don't want to do that.

Refer to the reddit thread.

Yes, I dont use DEM, I use ProfileUnity but the steps are similar Im sure. We also implemented a login script that starts and stops the trace and for us it was an effective workaround until this issue is fixed.

Do you have the information on that to share?  "starts and stops the trace"

Refer to the reddit thread.

Authentication issues with latest version of 365 apps. : VMwareHorizon (reddit.com)

Basically this what I used as an elevated task in DEM.

c:\Windows\System32\netsh.exe trace start scenario=InternetClient_dbg provider=Microsoft-Windows-TCPIP level=5 capture=yes packettruncatebytes=120 tracefile=C:\temp\net.etl report=disabled perf=yes correlation=disabled

c:\Windows\System32\netsh.exe trace stop

As for right now there are 2 problems with the Horizon VDI and Microsoft latest changes.

1. New teams that broke the authentication with Microsoft

2. February patch that pushed the new Microsoft authentication.

We have tried everything we can together with the VMware team, it doesn't seem like there is a fix for it right now.

I hope maybe soon to have a fix for it! 

We are using the Dem profile solution btw.

Maybe not a permanent fix. But there certainly is a workaround as mentioned above!

Are you running this as a Logon Task, leveraging an Elevated Task?

I'm trying to validate that it actually runs for regular users...where is the .etl file going?

Yes, that's exactly what I'm doing. I don't have run async selected, not sure what diff it makes.

c:\temp can be any directory, I think the file path can even be left out and will probably get created in system32 or something. I just decided to have it write to the temp directory.

Also, the entire netsh cmd line might not be needed. Something like this may also work.

netsh trace start capture=yes report=disabled persistent=yes tracefile=c:\%computername%_netshtrace.etl

Basically starting a trace, triggers something with the NIC that fixes the issue for the session.

I must be missing something.

It's not generating the net.etl file, so I assume it's failing.  It must be with how I setup the Privilege Elevation. Do you mind sharing that part as well? I've tried it as both Argument based, and also as an Elevated task.  I'm running it from the DEM Scripts folder on the NAS, not locally.

Thank you for the help, that works great. I'd never had the need for Elevated Tasks until today.

I believe the two logon tasks must run in alphabetical order, since it is starting and stopping correctly.

Two Logon Tasks:

Two privileged elevation:

Hello, 

Any update on this issue?