Home
%3CLINGO-SUB%20id%3D%22lingo-sub-549959%22%20slang%3D%22en-US%22%3ELesson%20Learned%20%2385%3A%20The%20impact%20of%20having%20a%20proxy%20server%20when%20you%20are%20connecting%20with%20AAD%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-549959%22%20slang%3D%22en-US%22%3E%3CP%3EHello%20Team%2C%3C%2FP%3E%0A%3CP%3E%26nbsp%3B%3C%2FP%3E%0A%3CP%3EToday%20I%20worked%20in%20a%20very%20cool%20service%20request%20when%20our%20customer%20was%20not%20able%20to%20connect%20to%20Azure%20SQL%20Database%20using%20Azure%20Active%20Directory.%3C%2FP%3E%0A%3CP%3E%26nbsp%3B%3C%2FP%3E%0A%3CP%3EAfter%20multiple%20troubleshooting%20process%20followed%20we%20found%20that%20our%20customer%20has%20a%20proxy%20configuration%20in%20their%20Internet%20Options-%26gt%3BConnections-%26gt%3BLocal%20Area%20Network%20LAN%20setting%20of%20their%20Web%20browser.%3C%2FP%3E%0A%3CP%3E%26nbsp%3B%3C%2FP%3E%0A%3CP%3EWe%20found%20that%20the%20configuration%20script%20defined%20contains%20some%20restrictions%20to%20an%20important%20URL%20that%20Azure%20Active%20Directory%20needs%20to%20use%20to%20perform%20the%20validation%20of%20the%20user%2Fpassword%20in%20all%20the%20methods%20that%20they%20have.%3C%2FP%3E%0A%3CP%3E%26nbsp%3B%3C%2FP%3E%0A%3CP%3EIf%20you%20are%20using%20Azure%20Active%20Directory%20please%2C%20review%20that%20you%20have%20allowed%20the%20connections%20to%20this%20FQDN%3A%26nbsp%3B(for%20more%20reference%20review%20this%20URL%3A%20%3CA%20href%3D%22https%3A%2F%2Fdocs.microsoft.com%2Fen-us%2Fazure%2Factive-directory%2Fhybrid%2Ftshoot-connect-connectivity%22%20target%3D%22_self%22%20rel%3D%22noopener%20noreferrer%20noopener%20noreferrer%22%3Ehttps%3A%2F%2Fdocs.microsoft.com%2Fen-us%2Fazure%2Factive-directory%2Fhybrid%2Ftshoot-connect-connectivity%3C%2FA%3E)%3C%2FP%3E%0A%3CP%3E%26nbsp%3B%3C%2FP%3E%0A%3CUL%3E%0A%3CLI%3Elogin.windows.net%3C%2FLI%3E%0A%3CLI%3Elogin.microsoftonline.com%3C%2FLI%3E%0A%3C%2FUL%3E%0A%3CP%3E%26nbsp%3B%3C%2FP%3E%0A%3CP%3EEnjoy!%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-TEASER%20id%3D%22lingo-teaser-549959%22%20slang%3D%22en-US%22%3E%3CP%3EToday%20I%20worked%20in%20a%20very%20cool%20service%20request%20when%20our%20customer%20was%20not%20able%20to%20connect%20to%20Azure%20SQL%20Database%20using%20Azure%20Active%20Directory.%3C%2FP%3E%0A%3CP%3EAfter%20multiple%20troubleshooting%20process%20followed%20we%20found%20that%20our%20customer%20has%20a%20proxy%20configuration%20in%20their%20Internet%20Options-%26gt%3BConnections-%26gt%3BLocal%20Area%20Network%20LAN%20setting%20of%20their%20Web%20browser.%3C%2FP%3E%3C%2FLINGO-TEASER%3E

Hello Team,

 

Today I worked in a very cool service request when our customer was not able to connect to Azure SQL Database using Azure Active Directory.

 

After multiple troubleshooting process followed we found that our customer has a proxy configuration in their Internet Options->Connections->Local Area Network LAN setting of their Web browser.

 

We found that the configuration script defined contains some restrictions to an important URL that Azure Active Directory needs to use to perform the validation of the user/password in all the methods that they have.

 

If you are using Azure Active Directory please, review that you have allowed the connections to this FQDN: (for more reference review this URL: https://docs.microsoft.com/en-us/azure/active-directory/hybrid/tshoot-connect-connectivity)

 

  • login.windows.net
  • login.microsoftonline.com

 

Enjoy!