Hi Team,
I’m configuring Azure SSO (OAuth2) for Rundeck using the official documentation:https://docs.rundeck.com/docs/administration/security/sso/azure-sso.html
I have successfully created an Application Registration in Azure AD and configured the required values in my rundeck-config.properties file.
However, after restarting the Rundeck server, the changes are not taking effect.
When I access: https://rundeck.company.com/
it redirects to: https://rundeck.company.com/user/login
instead of initiating the Azure SSO flow.
Current rundeck-config.properties file Configuration:
# rundeck-config.properties: Azure SSO
rundeck.sso.loginButton.enabled=true
rundeck.sso.loginButton.title=Login with Azure
rundeck.sso.loginButton.url=oauth/azure
rundeck.security.oauth.azure.autoConfigUrl=https://login.microsoftonline.com/<DIRECTORY_TENANT_ID>/v2.0
rundeck.security.oauth.azure.clientId=<CLIENT_ID>
rundeck.security.oauth.azure.clientSecret=<SECRET_VALUE>
rundeck.security.syncOauthUser=true
# Azure scopes
rundeck.security.oauth.azure.scope=openid email profile https://graph.microsoft.com/GroupMember.Read.All
# Attribute mapping
rundeck.ssoSyncAttribNames.firstname=given_name
rundeck.ssoSyncAttribNames.lastname=family_name
rundeck.ssoSyncAttribNames.email=preferred_username
# Optional mapping (currently commented)
#rundeck.security.oauth.azure.principleKeys=preferred_username
Issue:
- Rundeck continues to redirect to
/user/logininstead of Azure SSO. - The Azure login button is not triggering SSO.
- Changes in
rundeck-config.propertiesdo not seem to be reflected after restart.
What I’m Looking For:
- What could be causing Rundeck to ignore the Azure SSO configuration?
- Am I missing any mandatory configuration values for Azure OAuth?
- Are there additional settings (e.g.,
rundeck.security.auth.type, framework settings, or profile configs) required to enable SSO? - Any troubleshooting steps to verify if the config is being picked up?
Any guidance on what I might be missing or how to debug this issue would be greatly appreciated.