How to enable 3rd party cookies ONLY for Microsoft Teams

21

4

The company I work for wants us to begin using Microsoft Teams however after logging in the page goes into a redirect loop for about a minute, and then finally ends up on this error screen.

D'oh! To open the web app, you need to change your browser settings to allow third-party cookies. I know that I could just open my browser settings (Chrome in my case) and just allow all 3rd party cookies... but I don't want to do that since it would do this for all websites. Unchecking this box does solve the issue, but it's not an acceptable resolution to this issue for me.

Chrome Settings - block third-party cookies and site data

I also know that I can add exceptions to allow thirst party cookies from certain websites. I've tried adding teams.microsoft.com and even just microsoft.com, neither one works and I still get this error page.

Chrome Settings - third-party cookie exceptions

How are you supposed to use Microsoft Teams without allowing every website to add whatever cookies they want to add? Am I missing something obvious here? It's worth noting that I've also disabled my adblocker software for this domain.

CBarr

Posted 2017-03-17T14:29:33.703

Reputation: 387

This would seem to be a web browser issue, no? As such it belongs on [su]. – ale – 2017-03-17T14:32:44.957

This is how Microsoft Teams seems to work out of the box. You have to make local setting changes just to be able to use their website. I'm happy to move the question there if needed, but to me it seems like other might wan to know how they are supposed to visit this website without requiring a browser security hole. – CBarr – 2017-03-17T14:33:43.513

To provide Microsoft Teams feedback upvote this: https://microsoftteams.uservoice.com/forums/555103-public/suggestions/18681580-acknowledge-exceptions-for-third-party-cookies-ins

– MarcH – 2019-08-23T15:28:07.560

Answers

0

A workaround seems to be to just skip the web app and download their desktop application instead: https://teams.microsoft.com/downloads

CBarr

Posted 2017-03-17T14:29:33.703

Reputation: 387

4Which works if you're on macOS or Windows, not Linux. – retorquere – 2018-09-24T18:30:50.640

This would open more security holes than adding a browser exception. – James – 2019-08-05T09:39:40.633

@James you're mixing up two completely different things. Downloading one app is a security risk because it requires trusting one company (not any company). This superuser question is not really about security, it's about privacy and not being tracked by ALL websites on the internet. – MarcH – 2019-08-23T15:25:47.667

@MarcH It depends on what the app does, and what access it has. Better to use a fresh (trusted) broswer profile only for this than use an app. – James – 2019-08-23T15:37:03.520

21

Add a cookie exception for https://login.microsoftonline.com. This worked for me at least.

Ed B

Posted 2017-03-17T14:29:33.703

Reputation: 211

7

After login you can check in Chrome what cookies it uses. enter image description here

Third party would be: .skype.com and maybe .online.lync.com

If you use IE you might have *.microsoft.com in your Trusted Zone but .skype.com is not and IE/Edge will throw error. (as sites are in different zones)

At the bottom left (click on the guid error code d928....) of your screenshot you can download a log file (to check details what URL are called and what the issue is)

Tilo

Posted 2017-03-17T14:29:33.703

Reputation: 181

2

I added all 4 entries and teams.microsoft.com is now working in Chrome with 3rd party cookies disabled. Thanks for the posts.

Where to add

chrome://settings/content/cookies under Allow

What I added

[*.]microsoft.com

[*.]microsoftonline.com

[*.]skype.com

[*.]online.lync.com

dl_crash

Posted 2017-03-17T14:29:33.703

Reputation: 21

1

As Ed B has already written it is sufficient to enter the URL https://login.microsoftonline.com.

To distribute the setting in a company you can set the following regestry value:

Windows Registry Editor Version 5.00
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Google\Chrome\CookiesAllowedForUrls]
"1"="https://login.microsoftonline.com"

To use wildcards in the Chrome Application (answer from Tilo), use this syntax:

[*.]skype.com
[*.]online.lync.com

Else the URL can not be entered. However, I did not have to add the two pages

Source: CLICK

JuniorAdmin

Posted 2017-03-17T14:29:33.703

Reputation: 31

1

you need to add an exception to chrome for both:

  • [*.]microsoft.com
  • [*.]microsoftonline.com

Christopher Harrison

Posted 2017-03-17T14:29:33.703

Reputation: 11

0

On my Chrome 67 on Ubuntu 16.04 I had the exact same message saying that I needed to enable third party cookies. Since on my system these were already allowed this was apparently an incorrect error message.

On my system the Teams website started to work after I removed all locally stored data from Chrome that was related to the teams.microsoft.com website and then pressed the Try Again button.

Effectively I simply did REMOVE ALL under chrome://settings/cookies/detail?site=teams.microsoft.com. If this link does not work for you then use chrome://settings/siteData and search teams.microsoft.com

Niels Basjes

Posted 2017-03-17T14:29:33.703

Reputation: 536

Asked: 2017-03-17T14:29:33.703

Viewed: 13 512 times

Active: 2019-08-25T17:24:49.850