Microsoft is introducing a registry-based policy to improve the management of Single Sign-On (SSO) permissions for devices running Windows 11 versions 24H2 and 25H2, specifically for those managed through Microsoft Entra ID. This policy allows IT administrators to automatically accept SSO permissions, enhancing the user experience in corporate environments. Users with personal Microsoft accounts or unmanaged devices will still receive prompts for SSO permissions. The change aims to provide users, particularly in the European Economic Area (EEA), with more control over their account usage across Microsoft applications. Deployment options for IT administrators include Group Policy, Microsoft Intune, other mobile device management solutions, Microsoft Configuration Manager, and any management tool that supports registry policy deployment. Administrators are advised to validate SSO behavior after deployment.