1Password Azure AD SSO

a quick integration of the new SSO feature of 1password in RDM would be dreamlike :)

Hello,

Your topic has been moved to the feature request section of the forum.

Best regards,

Hello,

I have opened a ticket. We will have to investigate to see if it's possible.

Regards,

are there any news on this? would be great to hear something about it. :)

Nothing new for now unfortunately.

Regards,

We're also using 1Password with Azure AD SSO.

Any news on this topic?

Hello,

Nothing new for now, it's not something simple and requires a lot of changes. Our ticket is still open.

Regards,

Hi Hubert,
another 8 months have passed, can you already give an update? or perhaps a possible roadmap?
Best Regards

Hello,

Unfortunately we haven't made progress on this. We've had other priorities when it comes to password integrations, both existing and new, for example updating our library to be asynchronous (in progress), as well as updating the Duo implementation to V4.
We would like to eventually add support for Azure AD SSO in our 1Password integration but this is not a simple task and we haven't had many requests for it over the years. I understand though, that for our users who are using Azure AD SSO, supporting this would be very nice. I will see if this is something we can add to a future roadmap, but I can't make any promise on if we will be able to deliver.

Regards,

We're in the process of rolling out DVLS and RDM in our company and we are also missing this. Was excited to see there was 1Password support but unfortunately not compatible with our SSO.

So +1 here for the 1Password Azure AD SSO integration feature.

Hey Hubert,

any update on this?

I would also appreciate that feature.

Hello,

Nothing new for now, but we are noting your interest in this.

Regards,

We would also love to see this feature in a future update since we cannot use the 1Password integration before that.

Thank you for the feedback. Just to let you know, at the moment we're (still) focusing on migrating a few of our libraries to be asynchronous to improve performance, then LastPass SSO support is next. Soon after we will hopefully be able to work on 1Password Azure AD SSO. These are all big projects and knowing that many of our users would start using or make more use of the integration is good for us to know, so we can keep this on the roadmap.

Regards,

This is preventing us from moving to SSO with 1Password. Which is a huge bummer.

Are there any news on this?
Integration of the SSO function of 1password into RDM would definitely be appreciated.

Hello,

No news for now unfortunately. There was a shuffle of priorities during 2025.2 and 2025.3 which meant we couldn't yet implement LastPass Azure AD SSO (which means it also delayed supporting it in 1Password). LastPass SSO is on our roadmap for 2026.1 and we will see what we can do in regards to 1Password from there. It's not a simple addition so there may be challenges along the way.

Regards,

Hello,

I wanted to let you know that we've been making progress on Azure AD SSO for 1Password. For now it's too early to say whether it will be in our 2026.1 version early next year, but we're still actively working on this and it looks promising.

Regards,

Hello,

Our 2026.1 release will include support for 1Password SSO login.

Regards

Hello,

Our 2026.1 release will include support for 1Password SSO login.

Regards

@Jonathan Del Signore

perfect! Thanks a lot!
How can I get this version?
My Remote Desktop Manager tells me I'm up-to-date with my version 2025.3.29.0.
In the past I was able to configure some settings in Version management, but I don't find that setting in my RDM anymore.

So, when is version 2026.1.4.0 scheduled for release?

Hello,

We are currently planning to release version 2026.1 around March, with a beta version coming out a few weeks prior. Due to the changes required with the integration, this couldn't make it into a minor update of 2025.3.

Regards,

@Hubert Mireault Is there perhaps a guide on how to set this up? Maybe I'm doing something horribly wrong but I am already stuck on adding the 1password SSO credential entry.



I also tried entering the custom host that is being displayed in my 1password app but no difference.
Whenever I click the 3 dots next to account, I always just get a 'Login to 1Password failed'. I'm also never prompted for my password or anything.

Currently running 2026.1.9.0.

I was able to get the 1Password entry saved with the following options:

But I'm stuck again at adding 1Password as login for a connection. Clicking on "Aus Liste auswählen" ["Choose from list"] gives an error:

Hello,

@MathieuVHM @ubialek It's possible there's some edge cases or certain SSO setups that we don't fully support, or simply that there's a bug in the implementation. It worked well in our environment, but it doesn't mean it'll necessarily work in all cases, unfortunately. Could you both do two things, it would help us diagnose this issue.

First, go in the Help tab in the ribbon, and turn on the performance profiling. Go in the debug tab, and set the value to 1. You will need to keep this window opened.
Then, reproduce the issue with 1Password. This will output some logs in the window, and I'd like to see these logs. It will help us pinpoint where this is failing a bit more easily.

Additionally, after having reproduced this issue, please go in the Help > Application logs section of the ribbon. It's possible there would be an error logged there, with a timestamp matching when you reproduced the issue, and I would also like to see that, as it may contain vital information for us.

Before sending either of these, just ensure there is no sensitive information and that it can be shared publically. There should not be, but it's better to validate this before sending it.

Regards,

Debug output:

Performance Tab:
Main thread (UI) - Level - 1 - [Debug]
----------------------------------------
SelectionChanged - Default...
OnCurrentConnectionChanged : 3 ms
SelectionChanged - Default : 117 ms
Connection States: Refresh : 90 ms
Hub Data Source - Resolving password for connection 1Password SSO it@[DOMAIN].de
Silent: PasswordManagerAccess.Common.InternalErrorException: Invalid or unexpected response from the server (HTTP status: OK)
---> System.Text.Json.JsonException: JSON deserialization for type 'PasswordManagerAccess.OnePassword.Model+LoginInfo' was missing required properties including: 'userUuid'; 'signInAddress'.
at System.Text.Json.ThrowHelper.ThrowJsonException_JsonRequiredPropertyMis...

Log entry:
PasswordManagerAccess.Common.InternalErrorException: Invalid or unexpected response from the server (HTTP status: OK)
---> System.Text.Json.JsonException: JSON deserialization for type 'PasswordManagerAccess.OnePassword.Model+LoginInfo' was missing required properties including: 'userUuid'; 'signInAddress'.
at System.Text.Json.ThrowHelper.ThrowJsonException_JsonRequiredPropertyMissing(JsonTypeInfo parent, BitArray assignedOrNotRequiredPropertiesSet)
at System.Text.Json.Serialization.Converters.ObjectDefaultConverter`1.OnTryRead(Utf8JsonReader& reader, Type typeToConvert, JsonSerializerOptions options, ReadStack& state, T& value)
at System.Text.Json.Serialization.JsonConverter`1.TryRead(Utf8JsonReader& reader, Type typeToConvert, JsonSerializerOptions options, ReadStack& state, T& value, Boolean& isPopulatedValue)
at System.Text.Json.Serialization.JsonConverter`1.ReadCore(Utf8JsonReader& reader, T& value, JsonSerializerOptions options, ReadStack& state)
at System.Text.Json.JsonSerializer.ReadFromSpan[TValue](ReadOnlySpan`1 json, JsonTypeInfo`1 jsonTypeInfo)
at System.Text.Json.JsonSerializer.Deserialize[TValue](String json, JsonSerializerOptions options)
at PasswordManagerAccess.Common.RestClient.DeserializeFromJson[T](String json)
at PasswordManagerAccess.Common.RestClient.MakeRequestAsync[TContent,TData](String endpoint, HttpMethod method, HttpContent content, Dictionary`2 headers, Dictionary`2 cookies, Int32 maxRedirects, Func`2 deserialize, CancellationToken cancellationToken)
--- End of inner exception stack trace ---
at PasswordManagerAccess.OnePassword.Client.GetLoginInfo(String username, RestClient rest, CancellationToken cancellationToken)
at PasswordManagerAccess.OnePassword.Client.SsoLogIn(Credentials credentials, AppInfo app, IAsyncUi ui, IAsyncSecureStorage storage, RestClient rest, CancellationToken cancellationToken)
at PasswordManagerAccess.OnePassword.Client.SsoLogIn(Credentials credentials, AppInfo app, IAsyncUi ui, IAsyncSecureStorage storage, IRestTransport transport, CancellationToken cancellationToken)
at PasswordManagerAccess.OnePassword.Client.SsoLogIn(Credentials credentials, AppInfo app, IAsyncUi ui, IAsyncSecureStorage storage, CancellationToken cancellationToken)
at Devolutions.RemoteDesktopManager.Managers.OnePasswordManager.Initialize(ConnectionEngine engine, String username, String password, String accountKey, String uuid, String url, OnePasswordLoginMethod loginMethod)

Thank you for the logs, it looks like there's some data we're expecting that isn't found, or maybe we're parsing the returned data incorrectly.

Could you let me know what SSO you're using? We've only implemented Azure AD SSO for now, so if you're using a different one, that might be why it's failing.

Regards,

We're using Azure AD / Entra ID. This is what a login to 1Password looks like for me:


The SSO is handled by this Business-App in Entra:

Perfect, thank you for this information. I'll forward this to our devs for analysis.

Regards,

Hello,

@MathieuVHM @ubialek It's possible there's some edge cases or certain SSO setups that we don't fully support, or simply that there's a bug in the implementation. It worked well in our environment, but it doesn't mean it'll necessarily work in all cases, unfortunately. Could you both do two things, it would help us diagnose this issue.

First, go in the Help tab in the ribbon, and turn on the performance profiling. Go in the debug tab, and set the value to 1. You will need to keep this window opened.
Then, reproduce the issue with 1Password. This will output some logs in the window, and I'd like to see these logs. It will help us pinpoint where this is failing a bit more easily.

Additionally, after having reproduced this issue, please go in the Help > Application logs section of the ribbon. It's possible there would be an error logged there, with a timestamp matching when you reproduced the issue, and I would also like to see that, as it may contain vital information for us.

Before sending either of these, just ensure there is no sensitive information and that it can be shared publically. There should not be, but it's better to validate this before sending it.

Regards,

@Hubert Mireault

Ubialek already provided the logs but maybe useful to be able to compare or to rule out PEBCAK. We are also using Microsoft Entra/Azure by the way.

Performance profiling - performance tab

Main thread (UI) - Level - 1 - [Debug]
----------------------------------------
Connection States: Refresh : 20 ms
Silent: PasswordManagerAccess.Common.InternalErrorException: Invalid or unexpected response from the server (HTTP status: OK)
 ---> System.Text.Json.JsonException: JSON deserialization for type 'PasswordManagerAccess.OnePassword.Model+LoginInfo' was missing required properties including: 'userUuid', 'signInAddress'.
   at System.Text.Json.ThrowHelper.ThrowJsonException_JsonRequiredPropertyMis...
RefreshConnections...
    LoadConnections UI - [Devolutions Server : Devolutions Server] - [NS] - ReadOnly - 64-bit...
        HasSecurityChanged : 17 ms
        Reload: False - HasSecurityChanged: False - HasChanged: False
        Load connection overrides...
            Has changes : 16 ms
        Load connection overrides : 16 ms
        RefreshRepositories : 1 ms
        FavoriteManager.LoadFolders : 54 ms
    LoadConnections UI - [Devolutions Server : Devolutions Server] - [NS] - ReadOnly - 64-bit : 119 ms
RefreshConnections : 119 ms

Thread : 87
----------------------------------------
87 - PrivateConnectionManager.Refresh...
87 -     LoadConnections [Devolutions Server : Devolutions Server - User Vault] - [User : redactedadminuser] - ReadOnly - 64-bit : 18 ms
87 - PrivateConnectionManager.Refresh : 39 ms
87 - OfflineManager.Save - redactedadminuser...
87 -     Repository : 1 ms
87 -     Expiration : 10 ms
87 - OfflineManager.Save - redactedadminuser: 12 ms

Thread : 91
----------------------------------------
91 - GlobalConnectionManager.Refresh...
91 -     LoadConnections [Devolutions Server : Devolutions Server - Global Vault] - [Global] - ReadOnly - 64-bit : 18 ms
91 - GlobalConnectionManager.Refresh : 39 ms

Thread : 108
----------------------------------------
108 - OfflineManager.Save - Global...
108 -     Repository : 2 ms
108 -     Expiration : 6 ms
108 - OfflineManager.Save - Global : 9 ms

Performance profiling - debug tab

OnePassword - Descriptor.OpenWeb - Session was not initialized

Migrating data - up to date

Application logs

PasswordManagerAccess.Common.InternalErrorException: Invalid or unexpected response from the server (HTTP status: OK)
 ---> System.Text.Json.JsonException: JSON deserialization for type 'PasswordManagerAccess.OnePassword.Model+LoginInfo' was missing required properties including: 'userUuid', 'signInAddress'.
   at System.Text.Json.ThrowHelper.ThrowJsonException_JsonRequiredPropertyMissing(JsonTypeInfo parent, BitArray assignedOrNotRequiredPropertiesSet)
   at System.Text.Json.Serialization.Converters.ObjectDefaultConverter`1.OnTryRead(Utf8JsonReader& reader, Type typeToConvert, JsonSerializerOptions options, ReadStack& state, T& value)
   at System.Text.Json.Serialization.JsonConverter`1.TryRead(Utf8JsonReader& reader, Type typeToConvert, JsonSerializerOptions options, ReadStack& state, T& value, Boolean& isPopulatedValue)
   at System.Text.Json.Serialization.JsonConverter`1.ReadCore(Utf8JsonReader& reader, T& value, JsonSerializerOptions options, ReadStack& state)
   at System.Text.Json.Serialization.Metadata.JsonTypeInfo`1.Deserialize(Utf8JsonReader& reader, ReadStack& state)
   at System.Text.Json.JsonSerializer.ReadFromSpan[TValue](ReadOnlySpan`1 utf8Json, JsonTypeInfo`1 jsonTypeInfo, Nullable`1 actualByteCount)
   at System.Text.Json.JsonSerializer.ReadFromSpan[TValue](ReadOnlySpan`1 json, JsonTypeInfo`1 jsonTypeInfo)
   at System.Text.Json.JsonSerializer.Deserialize[TValue](String json, JsonSerializerOptions options)
   at PasswordManagerAccess.Common.RestClient.DeserializeFromJson[T](String json)
   at PasswordManagerAccess.Common.RestClient.MakeRequestAsync[TContent,TData](String endpoint, HttpMethod method, HttpContent content, Dictionary`2 headers, Dictionary`2 cookies, Int32 maxRedirects, Func`2 deserialize, CancellationToken cancellationToken)
   --- End of inner exception stack trace ---
   at PasswordManagerAccess.OnePassword.Client.GetLoginInfo(String username, RestClient rest, CancellationToken cancellationToken)
   at PasswordManagerAccess.OnePassword.Client.SsoLogIn(Credentials credentials, AppInfo app, IAsyncUi ui, IAsyncSecureStorage storage, RestClient rest, CancellationToken cancellationToken)
   at PasswordManagerAccess.OnePassword.Client.SsoLogIn(Credentials credentials, AppInfo app, IAsyncUi ui, IAsyncSecureStorage storage, IRestTransport transport, CancellationToken cancellationToken)
   at PasswordManagerAccess.OnePassword.Client.SsoLogIn(Credentials credentials, AppInfo app, IAsyncUi ui, IAsyncSecureStorage storage, CancellationToken cancellationToken)
   at Devolutions.RemoteDesktopManager.Managers.OnePasswordManager.Initialize(ConnectionEngine engine, String username, String password, String accountKey, String uuid, String url, OnePasswordLoginMethod loginMethod)

Thanks for the additional information, I'll forward this as well. I know there's another issue that's been fixed in 1Password but we'll have to confirm if it should also fix this one.

Regards,

Hello,

We were able to reproduce the same issue with one of our setups. We are investigating for a fix and will let you know once it's ready.

Regards

Hello,

A fix for this issue will be included in version 2026.1.11.0.

Regards

I just updated to version 2026.1.11.0. I'm still not able to use 1Password SSO. Here's the error log:

Debug only
OnePassword - Settings.BrowseWebTitle - Session was not initialized

Performance
Connection States: Refresh : 69 ms
Hub Data Source - Resolving sensitives for connection 1Password SSO it@[DOMAIN]
Hub Data Source - Resolving password for connection 1Password SSO it@[DOMAIN]
Silent: PasswordManagerAccess.Common.InternalErrorException: No SSO login method found for account it@[DOMAIN]
at PasswordManagerAccess.OnePassword.Client.SsoLogIn(Credentials credentials, AppInfo app, IAsyncUi ui, IAsyncSecureStorage storage, RestClient rest, CancellationToken cancellationToken)
at PasswordManagerAccess.OnePassword.Client.SsoLogIn(Credentials credentia...

Log
PasswordManagerAccess.Common.InternalErrorException: No SSO login method found for account it@[DOMAIN]
at PasswordManagerAccess.OnePassword.Client.SsoLogIn(Credentials credentials, AppInfo app, IAsyncUi ui, IAsyncSecureStorage storage, RestClient rest, CancellationToken cancellationToken)
at PasswordManagerAccess.OnePassword.Client.SsoLogIn(Credentials credentials, AppInfo app, IAsyncUi ui, IAsyncSecureStorage storage, IRestTransport transport, CancellationToken cancellationToken)
at PasswordManagerAccess.OnePassword.Client.SsoLogIn(Credentials credentials, AppInfo app, IAsyncUi ui, IAsyncSecureStorage storage, CancellationToken cancellationToken)
at Devolutions.RemoteDesktopManager.Managers.OnePasswordManager.Initialize(ConnectionEngine engine, String username, String password, String accountKey, String uuid, String url, OnePasswordLoginMethod loginMethod)

same for me.
I have updated to 2026.1.11.0 just a moment ago and it still fails: