configure an on-premise application for remote access through application proxy in azure

Question

configure an on-premise application for remote access through application proxy in azure

Shabin Suresh 211

Dear Team,

While configure an on-premise application for remote access through application proxy in azure active directory, HRWeb and API end point to different domain both of them are published through azure, facing issue with cross domain, could you please help to resolve.

Thanks,

Goutam Pratti 6,170 Reputation points Microsoft External Staff Moderator

2025-03-21T08:52:14.6966667+00:00

Hello @Shabin Suresh ,

I understand that you've configured an on-premise application for remote access through the Application Proxy in Microsoft Entra ID. You mentioned that the HRWeb and API endpoints are pointing to different domains. Could you clarify what exactly you are trying to achieve? This will help in troubleshooting the issue more effectively. Additionally, you mentioned facing issues with cross-domain access—could you please specify the exact error you're encountering and share a screenshot of the error?

You can refer to the troubleshooting steps in this guide, which might be helpful: Troubleshooting Application Proxy.

I'm happy to assist you further.
Shabin Suresh 211 Reputation points

2025-03-21T08:58:18.1333333+00:00
Hi Goutam,

Thanks for the reply.

While configure an on-premise application for remote access through application proxy in azure active directory, HRWeb and API end point to different domain ( hrweb.contoso.com and hrwebapi.contoso.com) both of them are published through azure, facing issue with CORS error. If we remove the particular domain, then the site is reachable and no CORS error. When checking from Server or Local network its working only issue through azure proxy. could you please help to resolve

Error- Access to XML HttpRequest at ''https://hrwebapi.contoso.com/api/Martialstatus" from origin ''https://hrweb.contoso.com'' has been blocked by CORS policy: Response to preflight request doesnt pass access control check: No ''Access-Control-Allow-Origin'' header is present on the requested resource.

Configured CORS in applications as:

<add name="Access-Control-Allow-Origin" value="*" /> <add name="Access-Control-Allow-Methods" value="*" />

API:

options.AddPolicy("CorsPolicy", builder => builder.AllowAnyOrigin() .AllowAnyMethod() .AllowAnyHeader());

Thanks,
Goutam Pratti 6,170 Reputation points Microsoft External Staff Moderator

2025-03-25T06:38:25.1666667+00:00

Hello @Shabin Suresh ,

I Understand You are getting an cors error where when you are trying to access HHTP request
https://hrwebapi.contoso.com/api/Martialstatus it blocked by CORS Policy from this https://hrweb.contoso.com and also there is no "Access-Control-Allow-Origin'' header is present on the requested resource.

Browser security usually prevents a web page from making requests to another domain. This restriction is called the same-origin policy, and prevents a malicious site from reading sensitive data from another site.
Same-origin policy prevents apps from accessing resources from other origins unless they use the correct access control headers. If the CORS headers are absent or incorrect, cross-origin requests fail.

I Recommend you follow the document and troubleshoot the issue where it is having different options to solve the CORS Issue using application proxy.

Hope this helps. Let us know if you have any additional queries happy to help.
Goutam Pratti 6,170 Reputation points Microsoft External Staff Moderator

2025-03-27T08:17:14.5966667+00:00

Hello @Shabin Suresh ,

following up to see if the above response is helpful .Let us know if you have any other queries.
Happy to assist you further.
Shabin Suresh 211 Reputation points

2025-03-27T10:32:35.4966667+00:00

Hi @Goutam Pratti ,

We are currently investigating the issue with the solutions you provided. I will confirm the details and update you shortly.

Thanks,

Shabin
Goutam Pratti 6,170 Reputation points Microsoft External Staff Moderator

2025-03-28T06:45:22.73+00:00

Hello @Shabin Suresh ,

following up to see if the suggestion is helpful. Let us know if you have any additional queries happy to assist you further.
Goutam Pratti 6,170 Reputation points Microsoft External Staff Moderator

2025-03-31T12:31:56.4466667+00:00

Hello @Shabin Suresh ,

following up to see if the suggestion is helpful. Let us know if you have any additional queries happy to assist you further.
Shabin Suresh 211 Reputation points

2025-03-31T14:26:50.1866667+00:00

Hi @Goutam Pratti ,

Thank you so much for the follow up. Currently we are in Eid holidays, will update you the status by Wednesday.

Thanks,
Shabin Suresh 211 Reputation points

2025-04-02T09:43:27.39+00:00

Hi @Goutam Pratti ,

This one is managing by another team, we have meeting tomorrow and will update you after.

Thank you so much for the support.

Thanks,
Shabin Suresh 211 Reputation points

2025-04-03T06:10:58.1133333+00:00

Hi @Goutam Pratti ,

In Azure this is the setting and still we have the issue.

Kindly advise.

Thanks,
Goutam Pratti 6,170 Reputation points Microsoft External Staff Moderator

2025-04-03T17:14:35.6133333+00:00

Hello @Shabin Suresh ,

I understand that you are encountering a CORS error, as mentioned in your previous response. These CORS errors occur when the correct control headers are not used. If the CORS headers are missing or incorrect, cross-origin requests will fail. Therefore, please ensure that you are using the correct control headers for your on-premises application.

I recommend referring to the document below to resolve the CORS error you are experiencing with your on-premises application.

Document: https://learn.microsoft.com/en-us/entra/identity/app-proxy/application-proxy-understand-cors-issues?source=recommendations#solutions-for-application-proxy-cors-issues

Hope this helps. If you are still facing the issue. Let us know happy to assist you further.
Goutam Pratti 6,170 Reputation points Microsoft External Staff Moderator

2025-04-04T16:24:17.7433333+00:00

Hello @Shabin Suresh ,

following up to see if the suggestion is helpful. Let us know if you have any additional queries happy to assist you further.

Your answer

Goutam Pratti 6,170 Reputation points Microsoft External Staff Moderator

2025-03-21T08:52:14.6966667+00:00

Hello @Shabin Suresh ,

I understand that you've configured an on-premise application for remote access through the Application Proxy in Microsoft Entra ID. You mentioned that the HRWeb and API endpoints are pointing to different domains. Could you clarify what exactly you are trying to achieve? This will help in troubleshooting the issue more effectively. Additionally, you mentioned facing issues with cross-domain access—could you please specify the exact error you're encountering and share a screenshot of the error?

You can refer to the troubleshooting steps in this guide, which might be helpful: Troubleshooting Application Proxy.

I'm happy to assist you further.
Shabin Suresh 211 Reputation points

2025-03-21T08:58:18.1333333+00:00

Hi Goutam,

Thanks for the reply.

While configure an on-premise application for remote access through application proxy in azure active directory, HRWeb and API end point to different domain ( hrweb.contoso.com and hrwebapi.contoso.com) both of them are published through azure, facing issue with CORS error. If we remove the particular domain, then the site is reachable and no CORS error. When checking from Server or Local network its working only issue through azure proxy. could you please help to resolve

Error- Access to XML HttpRequest at ''https://hrwebapi.contoso.com/api/Martialstatus" from origin ''https://hrweb.contoso.com'' has been blocked by CORS policy: Response to preflight request doesnt pass access control check: No ''Access-Control-Allow-Origin'' header is present on the requested resource.

Configured CORS in applications as:

<add name="Access-Control-Allow-Origin" value="*" /> <add name="Access-Control-Allow-Methods" value="*" />

API:

options.AddPolicy("CorsPolicy", builder => builder.AllowAnyOrigin() .AllowAnyMethod() .AllowAnyHeader());

Thanks,
Goutam Pratti 6,170 Reputation points Microsoft External Staff Moderator

2025-03-25T06:38:25.1666667+00:00

Hello @Shabin Suresh ,

I Understand You are getting an cors error where when you are trying to access HHTP request
https://hrwebapi.contoso.com/api/Martialstatus it blocked by CORS Policy from this https://hrweb.contoso.com and also there is no "Access-Control-Allow-Origin'' header is present on the requested resource.

Browser security usually prevents a web page from making requests to another domain. This restriction is called the same-origin policy, and prevents a malicious site from reading sensitive data from another site.
Same-origin policy prevents apps from accessing resources from other origins unless they use the correct access control headers. If the CORS headers are absent or incorrect, cross-origin requests fail.

I Recommend you follow the document and troubleshoot the issue where it is having different options to solve the CORS Issue using application proxy.

Hope this helps. Let us know if you have any additional queries happy to help.
Goutam Pratti 6,170 Reputation points Microsoft External Staff Moderator

2025-03-27T08:17:14.5966667+00:00

Hello @Shabin Suresh ,

following up to see if the above response is helpful .Let us know if you have any other queries.
Happy to assist you further.
Shabin Suresh 211 Reputation points

2025-03-27T10:32:35.4966667+00:00

Hi @Goutam Pratti ,

We are currently investigating the issue with the solutions you provided. I will confirm the details and update you shortly.

Thanks,

Shabin
Goutam Pratti 6,170 Reputation points Microsoft External Staff Moderator

2025-03-28T06:45:22.73+00:00

Hello @Shabin Suresh ,

following up to see if the suggestion is helpful. Let us know if you have any additional queries happy to assist you further.
Goutam Pratti 6,170 Reputation points Microsoft External Staff Moderator

2025-03-31T12:31:56.4466667+00:00

Hello @Shabin Suresh ,

following up to see if the suggestion is helpful. Let us know if you have any additional queries happy to assist you further.
Shabin Suresh 211 Reputation points

2025-03-31T14:26:50.1866667+00:00

Hi @Goutam Pratti ,

Thank you so much for the follow up. Currently we are in Eid holidays, will update you the status by Wednesday.

Thanks,
Shabin Suresh 211 Reputation points

2025-04-02T09:43:27.39+00:00

Hi @Goutam Pratti ,

This one is managing by another team, we have meeting tomorrow and will update you after.

Thank you so much for the support.

Thanks,
Shabin Suresh 211 Reputation points

2025-04-03T06:10:58.1133333+00:00

Hi @Goutam Pratti ,

In Azure this is the setting and still we have the issue.

Kindly advise.

Thanks,
Goutam Pratti 6,170 Reputation points Microsoft External Staff Moderator

2025-04-03T17:14:35.6133333+00:00

Hello @Shabin Suresh ,

I understand that you are encountering a CORS error, as mentioned in your previous response. These CORS errors occur when the correct control headers are not used. If the CORS headers are missing or incorrect, cross-origin requests will fail. Therefore, please ensure that you are using the correct control headers for your on-premises application.

I recommend referring to the document below to resolve the CORS error you are experiencing with your on-premises application.

Document: https://learn.microsoft.com/en-us/entra/identity/app-proxy/application-proxy-understand-cors-issues?source=recommendations#solutions-for-application-proxy-cors-issues

Hope this helps. If you are still facing the issue. Let us know happy to assist you further.
Goutam Pratti 6,170 Reputation points Microsoft External Staff Moderator

2025-04-04T16:24:17.7433333+00:00

Hello @Shabin Suresh ,

following up to see if the suggestion is helpful. Let us know if you have any additional queries happy to assist you further.

Share via

configure an on-premise application for remote access through application proxy in azure

Your answer