Hello all We are trying to use SAML web login with cisco duo to login the users to either server 25 session host or windows 11 vdis. So far so good. On server 2025 everything works as expected. On windows 11, I could track the problem down to LSA Protection which seems to block smartcard login (as described in this KB: Unable to launch a published resource using SAML due to HIPS protection). When I disable LSA protection it works on the windows 11 vdi as well. Has someone experienced the same and could manage to only exclude the parallels RAS components to work with SAML? Many thanks and kind regards, Luke
