If user opens a browser, like Chrome, it (the browser) shows a popup then user can authenticate.

The problem is when the smartphone shows automaticaly that "pseudo browser", you know? It is an warning on the top of the phone's screen. In this case, if the user clicks, it shows wsa's block page.

That is the problem. It should shows the popup so user can log in, or at least, it should say "open a browser".

Single sign on doesn't apply to users that are not logged in domain...
There was nothing on access log that could help.

Coming back to basic information to understand the setup.

it would be nice to explain your setup to understand better.

how is WSA allow user to access internet, what basis ? any user can use your WSA and browse internet, how are you redirecting traffic to WSA, WCCP or proxy config ?

If no log shown means it by passing proxy, what kind of rules setup for these kind of devices.

We are redirecting all traffic (http and https) through PBR.

All users from AD are allowed. There is logs, but it just says "blocked non authenticated access".

I don't know if I made myself clear... but it works if user open a browser on the smartphone and try to access some webpage. In this case the browser shows a popup and then user can log in.
The problem is when the user try to log in using that "fake browser", built in the SO.

Thanks for your help balaji.

See the behavior.

As per the video since it is not English not able to understand.

what is the IP  : 10.91.16.117

is that your proxy URL : http://proxy.insper.local ?

I changed the video, if you can, please edit your post to represent the right content.

Basicaly the IP 10.123.45.102 (new video) is the client IP.

wsa.lab.added.com.br is the WSA hostname.