[CDSlice]

It is also the only SSO flow I have ever seen that fundamentally cannot work if you have more than one account remembered on your device. So far the only way I’ve found to get it to let you log out of account A and then log into account B is to clear all cookies otherwise it gives you permission denied errors. Have no idea how it can be this horrible

[throwway120385]

Yeah I have had this experience too. Woe betide ye if your company gets bought by another company with pre-existing Azure AD.

[rgblambda]

Would container tabs solve that? They're pitched as helping separate work and personal logins.

[SoftTalker]

I just run completely separate browser profiles to separate work and personal stuff. And I still sometimes need private mode or a throwaway profile to get some random thing to work.

[aidenn0]

I use temporary-containers on firefox and they are a marvel for working with microsoft's stuff, which absolutely doesn't anticipate two accounts working on one browser.

Of course "open in incognito mode" works for this as well, just less automatic.

[mleo]

I am not sure how, but at one point even private browser mode would still have me logged in to Entra ID. Couldn’t log out of main browser and same session would follow me to private.

[SSLy]

Firefox's? Yep. Edge's? Bloody hell no.