So my issue is that I have set up AzureAD authentification for my company to enable multifactor authentification which works fine for the employees. We also have the case that we have to show the grafana dashboard on a kiosk pc which runs 24/7 so here the user should never be logged out. That is a problem with azures token rotation.
So I figured out it would be a possibility to authenticate the kiosk pc via auth proxy and whitelist only the ip of this certain pc so the kiosk pc gets directly forwarded to grafana and all other user have to authenticate via AzureAD, but I didn’t get it running at this point.
Is there a better solution for my case?
I’m running Grafana v10.0.3 on a Windows server, and as a reverse proxy I’m using nginx.