Support for Devolutions Password Manager extension behind Azure Application Proxy (Entra ID pre-auth)
0 vote
CLIENT REQUEST
We publish Devolutions Server through Azure Application Proxy with Microsoft Entra ID pre-authentication. The Devolutions Password Manager browser extension periodically shows "Unable to refresh token" or "Token expired." Investigating with dev tools, we found that API calls from the extension (e.g. to /api/public-instance-information) get redirected (HTTP 302) to the Microsoft login page instead of returning JSON.
The extension then fails trying to parse the HTML login page as JSON. A manual sign-in to the Devolutions Server URL in the same browser profile works around it temporarily.
Is this a known limitation, and could official support be added for this authentication flow (Entra ID pre-auth via Azure App Proxy) so the extension can handle the redirect itself, or at least fail gracefully and prompt for re-authentication instead of erroring out?
Maxim Robert
Hi,
Using DVLS with Azure Application Proxy is currently not officially supported in the Devolutions Password Manager browser extension.
We have created a ticket to add support for DVLS behind Azure Application Proxy with Entra ID pre-authentication in the Devolutions Password Manager extension.
Best regards,
Olivier Désalliers