add adsso link (#1497)

edunham · isemona · web-flow · commit c2d39413451f · 2024-03-25T23:50:27.000Z
* add adsso link

* Update _source/_posts/2024-02-29-third-party-cookies.md

Co-authored-by: Semona Igama &lt;semona.igama@gmail.com&gt;

---------

Co-authored-by: Semona Igama &lt;semona.igama@gmail.com&gt;
diff --git a/_source/_posts/2024-02-29-third-party-cookies.md b/_source/_posts/2024-02-29-third-party-cookies.md
@@ -31,7 +31,7 @@ When a user logs into their Okta account in a web browser, a [session cookie](ht
 
 Most of Okta's core auth flows do not rely on third-party cookies. When third-party cookies are used, they normally augment the basic login experience or add convenience features. The following sections outline all the design patterns in which Okta uses third-party cookies. If your application is in one of these categories, please test its behavior with third-party cookie deprecation. 
 
-Okta uses cookies to let applications introspect and extend user sessions. Cookies aren't required for basic login functionality. 
+Okta uses cookies to let applications introspect and extend user sessions. Cookies aren't required for basic login functionality. Without cookies, users can still log in, but some users might have to re-authenticate more often.
 
 ### Third-party cookie deprecation affects web applications that rely on the Okta session for user context
 
@@ -49,6 +49,8 @@ If you're using a custom domain like `login.mycompany.com` in your sign-in widge
 
 If you have a self-hosted Sign-In Widget with `mycompany.okta.com` configured as the `baseUrl` or `issuer` in its settings, cookies will be issued for `okta.com` and will be first-party to `okta.com` but third-party to `mycompany.com`. 
 
+If you have a self-hosted Sign-In Widget and use [agentless Desktop Single Sign-on](https://help.okta.com/en-us/content/topics/directory/ad-dsso-test.htm), follow the steps in [this Knowledge Base article](https://support.okta.com/help/s/article/third-party-cookies-utilized-by-the-sign-in-widget?language=en_US) to embed a Trial token script. 
+
 ### Third-party cookie deprecation affects "remember me" features
 
 "Remember Last Used Factor" (RLUF), for automatically selecting the user's preferred factor, uses third-party cookies. The "keep me signed in" feature of Okta Identity Engine and "Remember me" feature of Okta Classic rely on third-party cookies when the login application is on a different domain from the main app.  
