There is a requirement to use a loadbalancer LBAlias.DomainName.com which points to two PMAdmin servers (Server1.DomainName.com and Server2.DomainName.com). The Azure App is configured to use the LBAlias.DomainName.com URL. Password Manager correctly connects to EntraID to authenticate the user, however the reply back fails with:
"AADSTS50011: The reply URL 'https://Server1.DomainName.com:20000/RSTS/Login' specified in the request does not match the reply URLs configured for the application 'urn:RSTS/identity'. Make sure the reply URL sent in the request matches one added to your application in the Azure portal. Navigate to https://aka.ms/urlMismatchError to learn more about how to fix this"
Status:
NA
Workaround:
1.- Log in to the PMAdmin site
2.- Go to "General Settings" -> "Secure Token Server"
3.- Under the "IP range-based rules for hostname resolution", please add the Load alias as shown below and save:
© 2025 One Identity LLC. ALL RIGHTS RESERVED. Terms of Use Privacy Cookie Preference Center