Depending on what security settings I use is changing the behavior slightly. If I have check page permissions set to Secured areas it does automatically send a user to the organization sign on page, however it doesn't redirect properly, it just sends the user to the Security realm that is listed in the Claims-based authentication section. This in itself isn't the end of the world however we are making a progressive web app(basically a webpage that acts as a native application if you're unfamiliar), and when you close out of that window that opens in app and you go back to the website you're on it doesn't consider you logged in. Now I've got a login page I can use where I've manually tailored the redirect URL to just come back to my home page and that works but still requires the user to close out of that Home page it got redirected to go back to PWA mode I'll call it.
If I change check page permissions to All Pages I basically have to set the Access Denied page to be the organization sign on page which doesn't work real well for user experience.
I'm pretty new to Kentico, and completely inexperienced with the authentication piece for Kentico. If there is some good documentation I can read about or if you have any more suggestions I'm all ears. I don't have any ability to change how the ADFS works but have full control of the Kentico Portal Engine Instance.