Support for Devolutions Password Manager extension behind Azure Application Proxy (Entra ID pre-auth)

Backlog

Support for Devolutions Password Manager extension behind Azure Application Proxy (Entra ID pre-auth)

0 vote

avatar
CLIENT REQUEST


We publish Devolutions Server through Azure Application Proxy with Microsoft Entra ID pre-authentication. The Devolutions Password Manager browser extension periodically shows "Unable to refresh token" or "Token expired." Investigating with dev tools, we found that API calls from the extension (e.g. to /api/public-instance-information) get redirected (HTTP 302) to the Microsoft login page instead of returning JSON.

The extension then fails trying to parse the HTML login page as JSON. A manual sign-in to the Devolutions Server URL in the same browser profile works around it temporarily.

Is this a known limitation, and could official support be added for this authentication flow (Entra ID pre-auth via Azure App Proxy) so the extension can handle the redirect itself, or at least fail gracefully and prompt for re-authentication instead of erroring out?

Maxim Robert

All Comments (1)

avatar

Hi,

Using DVLS with Azure Application Proxy is currently not officially supported in the Devolutions Password Manager browser extension.

We have created a ticket to add support for DVLS behind Azure Application Proxy with Entra ID pre-authentication in the Devolutions Password Manager extension.

Best regards,

Olivier Désalliers