使用Azure AD同意流时出现空GUID错误 [英] Empty GUID error when using Azure AD consent flow

问题描述

我目前正在尝试使用管理员同意流程与Azure AD集成.
我已经在我们的域中设置了一个应用，对其设置了一些权限，然后导航到以下链接:

I'm currently trying to integrate with Azure AD using the admin consent flow.
I've set up an app in our domain, set a few permissions on it and am then navigating to the following link:

https://login.microsoftonline.com/mytestdomain.onmicrosoft.com/oauth2/authorize?client_id=12345678-1234-1234-1234-123456789012&response_type=code&redirect_uri=http://example.com/responsehandler&resource=12345678-1234-1234-1234-123456789012&prompt=admin_consent&state=12345

(这里的一些值已被替换为示例"值)

(Some of the values here have been swapped out for "example" values)

导航到该位置时，系统会要求我登录，我使用另一个要将应用程序导入到其中的测试域进行登录.
登录后，显示了该应用所需的所有权限的列表(似乎正确)，然后单击接受"，但出现以下错误:

When I navigate there I get asked to sign in, which I do using a different test domain into which I want to import the app.
After signing in I'm shown a list of all the permissions that the app needs (which appear to be correct), I click accept but then I get the following error:

AADSTS90002: Requested tenant identifier '00000000-0000-0000-0000-000000000000' is not valid. Tenant identifiers may not be an empty GUID.

我不确定这个空的GUID是从哪里来的，经过一番搜索之后，我找不到任何引起它的原因的引用.

I'm not sure where this empty GUID is coming from and after some searching I can't find any reference to what might be causing it.

推荐答案

Daniel Camargo 在上面的评论似乎做到了.
当我导航到login.microsoftonline.com链接时，我使用创建域的用户登录.
如果我以创建的测试管理员用户身份登录，它将按我的意愿运行.

Daniel Camargo's comment above seems to have done the trick.
When I navigated to the login.microsoftonline.com link I was logging in with the user that created the domain.
If I log in with a test admin user that I created it works as I'd want.

这篇关于使用Azure AD同意流时出现空GUID错误的文章就介绍到这了，希望我们推荐的答案对大家有所帮助，也希望大家多多支持IT屋！