一个或多个属性在Microsoft graph API中包含无效值 [英] One or more properties contains invalid values in Microsoft graph API

查看:47
本文介绍了一个或多个属性在Microsoft graph API中包含无效值的处理方法,对大家解决问题具有一定的参考价值,需要的朋友们下面随着小编来一起学习吧!

问题描述

我想在Azure Active Directory B2C上创建用户,我按照给定链接 https://graph.windows.net/testinggmail.onmicrosoft.com/users?api-version = 1.6

类型:-开机自检

标题:-

<预> <代码>授权:承载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.YQf6dWra1jua8XMHdqqqd5vrpVUxil_6YMM00drLl9LmOchUY7AtPOXF6T_p7Bmf2BwOWL02bsm7VJCM5cx_TD0cMzbOr4uybmyJJvDqfi1whvgOWbDnY_J9ArJWQMuk7jPIBPS_WT8UYsmM_ivRmcQcRxZtcYCrAaWWOJFeWFVucJFz9G-ld0qi4TU10-Qk9_owREDoitlwYEZwEzSUU-HauDCkjNVzDNhefXrjlJHMzXcsJMnVyX7txkZpiqcsM8H-2EKbFmavT4fN05zUh1Hy6hSLnKv24uDyB3hf2qEZvOaygDUPFRcbFSWH39yp698FGh9Ayr8vHr9wLRHHdA内容类型:application/json

请求正文:-

  {"accountEnabled":是,"signInNames":[{"type":"emailAddress",值":"joeconsumer@gmail.com"}],"creationType":"LocalAccount","displayName":乔消费者","mailNickname":"joec","passwordProfile":{"password":"P @ ssword!","forceChangePasswordNextLogin":false},"passwordPolicies":"DisablePasswordExpiration"}

响应:-

  {"odata.error":{"code":"Request_BadRequest",信息": {"lang":"en","value":一个或多个属性包含无效值."},"date":"2018-03-12T07:24:13","requestId":"fef2037f-8c6f-4190-8c5a-727dcccde5eb",值":null}}'

某些API可以正常工作,例如 GetUsers TokenAcuire ,但是我没有用Google搜索过它,但是它也有很多解决方案,但是没有用对我来说,链接在这里还有什么我已尝试此处按照该步骤创建单独的目录,然后获得错误权限不足以完成操作.

解决方案

使用Azure AD Graph API创建的这种类型的用户适用于Azure AD B2C:

从1.6版开始,Graph API支持创建本地和Azure Active Directory B2C租户的社交帐户用户.

如果您尝试将此Azure AD Graph API请求用于普通Azure AD租户,它将获得与您相同的错误提示.

因此,请确保您要查询的租户是B2C租户:

尝试使用B2C租户的全局管理员(例如username@b2ctenant.onmicrosoft.com)来获取令牌.然后在头部使用令牌来使用API​​:

请求: 

  POST https://graph.windows.net/myorganization/users?api-version=1.6

正文内容类型:application/json: 

  {"accountEnabled":是,"signInNames":[{"type":"emailAddress",值":"joeconsumer@gmail.com"}],"creationType":"LocalAccount","displayName":乔消费者","mailNickname":"joec","passwordProfile":{"password":"P @ ssword!","forceChangePasswordNextLogin":false},"passwordPolicies":"DisablePasswordExpiration"}

希望这会有所帮助!

I want to create users on the Azure Active Directory B2C i followed each steps for that in the given link Here

URL :- https://graph.windows.net/testinggmail.onmicrosoft.com/users?api-version=1.6

Type :- POST

Header :-

 Authorization:Bearer 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.YQf6dWra1jua8XMHdqqqd5vrpVUxil_6YMM00drLl9LmOchUY7AtPOXF6T_p7Bmf2BwOWL02bsm7VJCM5cx_TD0cMzbOr4uybmyJJvDqfi1whvgOWbDnY_J9ArJWQMuk7jPIBPS_WT8UYsmM_ivRmcQcRxZtcYCrAaWWOJFeWFVucJFz9G-ld0qi4TU10-Qk9_owREDoitlwYEZwEzSUU-HauDCkjNVzDNhefXrjlJHMzXcsJMnVyX7txkZpiqcsM8H-2EKbFmavT4fN05zUh1Hy6hSLnKv24uDyB3hf2qEZvOaygDUPFRcbFSWH39yp698FGh9Ayr8vHr9wLRHHdA
Content-Type:application/json

Request Body :- 

 { 

    "accountEnabled": true,
    "signInNames": [                            
        {
            "type": "emailAddress",             
            "value": "joeconsumer@gmail.com"
        }
    ],
    "creationType": "LocalAccount",           
    "displayName": "Joe Consumer",              
    "mailNickname": "joec",                     
    "passwordProfile": {
        "password": "P@ssword!",
        "forceChangePasswordNextLogin": false 
    },
    "passwordPolicies": "DisablePasswordExpiration"
}

Response :- 

{
    "odata.error": {
        "code": "Request_BadRequest",
        "message": {
            "lang": "en",
            "value": "One or more properties contains invalid values."
        },
        "date": "2018-03-12T07:24:13",
        "requestId": "fef2037f-8c6f-4190-8c5a-727dcccde5eb",
        "values": null
    }
}'

Some API'S are working fine like GetUsers and TokenAcuire but not create user i have googled it also got many solution but didn't worked for me link is here what else i have tried Here if i follow that steps for creating separate Direcotry then i get Error Insufficient Privilege to Complete Operation.

解决方案

This type of user creation with the Azure AD Graph API is for Azure AD B2C:

Beginning with version 1.6, Graph API supports creating local and social account users for Azure Active Directory B2C tenants.

If you try to use this Azure AD Graph API request for a normal Azure AD tenant, it will get the same error massage as yours.

So, ensure the tenant you're trying to query is a B2C tenant:

Try to use the global admin of the B2C tenant (e.g. username@b2ctenant.onmicrosoft.com) to obtain a token. Then use the token in the head to use the API :

Request:

 POST https://graph.windows.net/myorganization/users?api-version=1.6

Body Content-Type: application/json:

{ 

    "accountEnabled": true,
    "signInNames": [                            
        {
            "type": "emailAddress",             
            "value": "joeconsumer@gmail.com"
        }
    ],
    "creationType": "LocalAccount",           
    "displayName": "Joe Consumer",              
    "mailNickname": "joec",                     
    "passwordProfile": {
        "password": "P@ssword!",
        "forceChangePasswordNextLogin": false 
    },
    "passwordPolicies": "DisablePasswordExpiration"
}

Hope this helps!

这篇关于一个或多个属性在Microsoft graph API中包含无效值的文章就介绍到这了,希望我们推荐的答案对大家有所帮助,也希望大家多多支持IT屋!

查看全文
相关文章
其他开发最新文章
热门教程
热门工具
登录 关闭
扫码关注1秒登录
发送“验证码”获取 | 15天全站免登陆