Is it possible to use Entra authentication for Azure VM hosted .NET website?

Question

Is it possible to use Entra authentication for Azure VM hosted .NET website?

CloudFirst 20

Is it possible to use Entra authentication for Azure VM hosted .NET website? I don't want the app service deployment due to some dependency.

I'd configured the App registration, AD user, redirect URI(VM's DNSname) and used UseOpenIdConnectAuthentication in the .NET code for authentication, while opening the website url it asks for authentication after the authentication website shows failed with 502 and not hitting the redirectURI.

Is this the correct way to use Azure Entra authentication for IaaS hosted website or is it not allowed?

Any help would be greatly appreciated.

CloudFirst 20 Reputation points

2025-05-05T04:47:30.8833333+00:00

Thanks @Harshitha Eligeti for clarification and answering to my query. Yes, it's more of a configuration issue in the IIS and redirectURI is working now.

Accepted answer

0 additional answers

Your answer

CloudFirst 20 Reputation points

2025-05-05T04:47:30.8833333+00:00

Thanks @Harshitha Eligeti for clarification and answering to my query. Yes, it's more of a configuration issue in the IIS and redirectURI is working now.

Answer 1

Hello @CloudFirst
I Understand that you have configured the APP registration, AD User, redirect URI (VM's DNSname) and used UseOpenIdConnectAuthentication in the .NET code for authentication; while opening the website URL it asks for authentication after the authentication website shows failed with 502 and not hitting the redirectURI.

Yes, it is possible to use Microsoft Entra authentication for a .NET website hosted on an Azure VM. You can configure your application to use OpenID Connect for authentication, as you have already done by setting up the app registration and using UseOpenIdConnectAuthentication in your .NET code.

The 502 error you're encountering may be due to a misconfiguration of the redirect URI or issues with the networking setup of your Azure VM. Ensure that the redirect URI is correctly set to the VM’s DNS name, and that HTTPS (usually port 443) is open and accessible. Verify that your application is properly registered in Entra ID, with the correct client ID and client secret, and that the necessary Azure AD users and permissions are configured appropriately.

Using Azure Entra authentication for an IaaS-hosted website is allowed, but you need to ensure that all configurations are correct, and the application is properly set up to handle the authentication flow.

For additional information please refer this document: https://learn.microsoft.com/en-us/azure/azure-government/documentation-government-aad-auth-qs#integrate-microsoft-entra-login-into-a-web-application-using-openid-connect

Do Let us know if you have any queries. We are happy to assist further.

Harshitha Eligeti 4,055 Reputation points Microsoft External Staff Moderator

2025-05-05T17:30:52.3166667+00:00

Hello @CloudFirst
We are glad to hear that your issue got resolved. If this answers your query, do click Accept Answer and Yes for was this answer helpful. And, if you have any further query do let us know. This will help other community members facing similar issues find your thread as a reference.
Harshitha Eligeti 4,055 Reputation points Microsoft External Staff Moderator

2025-05-06T17:54:34.6366667+00:00

Hello @CloudFirst
We are glad to hear that your issue got resolved. If this answers your query, do click Accept Answer and Yes for was this answer helpful. And, if you have any further query do let us know. This will help other community members facing similar issues find your thread as a reference.

Share via

Is it possible to use Entra authentication for Azure VM hosted .NET website?

0 additional answers

Your answer