User needs to click 2 times for getting authenticated Azure OIDC

Hi Team,

We are running ELK stack version 7.17 with platinum license. We want to integrate Elasticsearch with Azure AD OIDC . We have done the configuration both at kibana and elasticsearch level.

elasticsearch.yml true
  order: 0
  order: 1
  rp.client_id: ".......17b0-ebc9-4fc1......"
  rp.response_type: "code"
  #rp.response_type: "id_token"
  rp.requested_scopes: ["openid", "email"]
  rp.redirect_uri: ""
  #rp.redirect_uri: ""
  op.authorization_endpoint: ""
  op.token_endpoint: ""
  op.userinfo_endpoint: ""
  op.endsession_endpoint: ""
  rp.post_logout_redirect_uri: "" "proxy_ip"
  http.proxy.port: proxy_port
  op.issuer: ""
  op.jwkset_path: ""
  claims.principal: email

So when a user browse the kibana and click on "Login with Azure" first time it will say "We hit an authentication error. Please check your credentials and try again. If you still can't log in, contact your system administrator."
I have attached the screenshot also.
When user click again then it will take to kibana homepage i mean 2nd time it will get successful authentication.

Does anyone encounter with this issue while configuring OIDC realm. We have deleted the cache , cookies and history but still it is not working. We don't have incognito mode in browsers as it is disabled by organization

This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.