使用Azure AD同意流时出现空GUID错误 [英] Empty GUID error when using Azure AD consent flow
问题描述
我目前正在尝试使用管理员同意流程与Azure AD集成.
我已经在我们的域中设置了一个应用,对其设置了一些权限,然后导航到以下链接:
I'm currently trying to integrate with Azure AD using the admin consent flow.
I've set up an app in our domain, set a few permissions on it and am then navigating to the following link:
https://login.microsoftonline.com/mytestdomain.onmicrosoft.com/oauth2/authorize?client_id=12345678-1234-1234-1234-123456789012&response_type=code&redirect_uri=http://example.com/responsehandler&resource=12345678-1234-1234-1234-123456789012&prompt=admin_consent&state=12345
(这里的一些值已被替换为示例"值)
(Some of the values here have been swapped out for "example" values)
导航到该位置时,系统会要求我登录,我使用另一个要将应用程序导入到其中的测试域进行登录.
登录后,显示了该应用所需的所有权限的列表(似乎正确),然后单击接受",但出现以下错误:
When I navigate there I get asked to sign in, which I do using a different test domain into which I want to import the app.
After signing in I'm shown a list of all the permissions that the app needs (which appear to be correct), I click accept but then I get the following error:
AADSTS90002: Requested tenant identifier '00000000-0000-0000-0000-000000000000' is not valid. Tenant identifiers may not be an empty GUID.
我不确定这个空的GUID是从哪里来的,经过一番搜索之后,我找不到任何引起它的原因的引用.
I'm not sure where this empty GUID is coming from and after some searching I can't find any reference to what might be causing it.
推荐答案
Daniel Camargo 在上面的评论似乎做到了.
当我导航到login.microsoftonline.com链接时,我使用创建域的用户登录.
如果我以创建的测试管理员用户身份登录,它将按我的意愿运行.
Daniel Camargo's comment above seems to have done the trick.
When I navigated to the login.microsoftonline.com link I was logging in with the user that created the domain.
If I log in with a test admin user that I created it works as I'd want.
这篇关于使用Azure AD同意流时出现空GUID错误的文章就介绍到这了,希望我们推荐的答案对大家有所帮助,也希望大家多多支持IT屋!