Skip to content

az network bastion rdp --auth-type AAD - Unable to change AAD user after first logon #28056

Description

@KentNordstrom

Describe the bug

Not sure if this is a bug in documentation or implementation... It could also be "by design" and should instead be a Feature request.

When I authenticate using AAD with the native RDP client it works fine, but I cannot find a way to change the AAD identity since I get automatically signed in to the remote VM automatically after first successful sign-in.

Related command

az network bastion rdp --auth-type AAD

Errors

No prompted to sign-in

Issue script & Debug output

In the debug output I see...
msal.application: Cache hit an AT
msal.telemetry: Generate or reuse correlation_id: 59c10bc4-44dd-492f-a1bb-171ae732b55e

Expected behavior

Some way to be able to clear the cached RDP credentials to sign-in again as another user.

Environment Summary

azure-cli 2.55.0

core 2.55.0
telemetry 1.1.0

Extensions:
bastion 0.3.0
ssh 2.0.2
webapp 0.4.0

Dependencies:
msal 1.24.0b2
azure-mgmt-resource 23.1.0b2

Python location 'C:\Program Files\Microsoft SDKs\Azure\CLI2\python.exe'
Extensions directory 'C:\Users\kent.azure\cliextensions'

Python (Windows) 3.11.5 (tags/v3.11.5:cce6ba9, Aug 24 2023, 14:38:34) [MSC v.1936 64 bit (AMD64)]

Additional context

No response

Metadata

Metadata

Assignees

Labels

Auto-AssignAuto assign by botNetworkaz network vnet/lb/nic/dns/etc...Network - BastionService AttentionThis issue is responsible by Azure service team.act-quality-productivity-squadcustomer-reportedIssues that are reported by GitHub users external to the Azure organization.questionThe issue doesn't require a change to the product in order to be resolved. Most issues start as that

Type

No type
No fields configured for issues without a type.

Projects

No projects

Milestone

No milestone

Relationships

None yet

Development

No branches or pull requests

Issue actions