Domain Hint in the Oauth request to Azure AD
0 vote
Using AzureAD for authentication causes Azure to present the "Pick an Account" screen event when users are already connected and there is only one account to pick from. According to this article Single sign-on (MSAL.js) - Microsoft Entra | Microsoft Learn the OAuth request can contain the Domain ID which will allow Azure to bypass this screen (discovery phase). DPS already knows the TenantID it is configured to trust, and it will be good if it can provide it along with the OAuth request.
All Comments (3)
Hello,
This feature is already available in newer versions of Devolutions Server (2022.3+). In the web interface, under Administration > Server Settings > Authentication > Microsoft, select "Automatic" under "Type of user interaction on login":
Best regards,
Richard Boisvert
369cc256-b21f-4677-bd18-61be86bb0b35.png
Thank you for the fast response. I didn't notice the addition of that drop down menu before until you pointed it out.
Hello,
Glad this is what you were looking for! Let us know if you have any issues with it.
Best regards,
Richard Boisvert