Devolutions ForumDevolutions Forum

Entra ID SSO with Certificate Credentials

Entra ID SSO with Certificate Credentials

1 vote

avatar
fkp

Entra ID SSO works great. But there doesn't seem to be a way to use Certificate credentials instead of Credential Secret for EntraID SSO implementation in Devolutions Server.

There can be multiple reasons to use Certificate Secrets. But my primary personal reason, is simply that I don't see the point in the apikey secret expiration. It's not a security point of concern, it's just a hastle.

All Comments (1)

avatar
François Dubois

Hello,

Thank you for your request. You’re absolutely right, having the API key secret expire can cause significant issues. We recently implemented an improvement that notifies the administrator a few days before the secret’s expiration (will be available in 2026.1). Since the expiration date cannot be retrieved through the Graph API, users must provide it in DVLS when configuring Entra ID authentication. This enhancement should help prevent problems related to expired secrets.

I have also noted your suggestion for potential future improvements.

Best regards,

François Dubois