New 5.2. Install - Windows/IIS auth issues

I’m in the process of updating my 4.2.4 install to a new 5.2 install. Both install and hosted on windows server via IIS, however 5.2 will be on server 2022. I have noticed after setting up windows auth, domain accounts when visiting the app/dashboard on 5.2 don’t really get their role if the user is auto signing into the app. They have to log out then back in with windows creds and their roles work and then things in the app that are based on roles work properly.

Even my admin account which has 2 roles, administrator and a custom role, when I log in automatically, I don’t have any “roles”, I cannot see the admin drop down from my account in the top right, but if I sign out then back in with windows auth it’s working.

edti: I included a $roles | out-file in my app just to export my roles and on first auth with windows auth i see all my sids, but no roles listed. If i log out then back in with windows auth and check the file i see all my sids AND my custom roles.

Product: PowerShell Universal
Version: 5.2

Updated to 5.3 and the issue still persists.

edit: more troubleshooting

I did have authentication disabled on the App before but now enabled it. Remove all custom roles and assigned just Administrator to my account and assigned administrator as the role for authentication.

  • When I launch directly into the App url I get unauthorized
  • When I launch directly into the Admin portal it auto logs me in and I have all rights
  • When I hit the App from the admin portal I get unauthorized
  • When I launch into the Admin portal, log out, then log into the admin portal again with the windows logon button, I can launch the app from the admin portal or hit the app url directly.