Site feedback

SaktiMohapatra-3019 avatar image
0 Votes"
SaktiMohapatra-3019 Posted ·

Why I am not able to post the query to the reply.

Why I am not able to post? Can you please help me posting the following

Hi @soumi-MSFT,
We have modified to https://login.microsoftonline.com/common and could see the APP created in CompanyA Azure under CompanyB Azure Enterprise Applications.Next,to integrate the Onedrive, From WebAPP provided the ClientID/ClientSecret and TenantID of CompanyA and on click, we provided the CompanyB user ID and PWD to connect to Onedrive.It asked for consent and When I accepted it gave the following error. Do I need to add the companyB user as an external user in CompanyA? Please let know.
Sigin Error: AADSTS50020: User account 'sakti@saktimohapatra.onmicrosoft.com' from identity provider 'https://sts.windows.net/a3750407-35a9-4274-a3f3-52d7e6f9cf0b/' does not exist in tenant 'nowigence.com' and cannot access the application 'c5a7c431-a09c-48b8-9de4-3b1ded0c68c6'(myonedrivetest) in that tenant. The account needs to be added as an external user in the tenant first. Sign out and sign in again with a different Azure Active Directory user account.

azure-active-directory
· 1
10 |1000 characters needed characters left characters exceeded
Toggle Comment visibility. Current Visibility: Visible to all users

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

Nandhagopal avatar image Nandhagopal ♦♦ ·

@SaktiMohapatra-3019 - Could you please share the error message when you are trying to post?

0 Votes 0 ·

1 Solution

soumi-MSFT avatar image
1 Vote"
soumi-MSFT Posted ·

Hello @SaktiMohapatra-3019, thank you for reaching out. To begin with, let me explain to you how the multi-tenant app works. Let's take this scenario, where you developed a code and got that registered in AAD of Tenant A as a multi-tenant app. Now since this app is a multi-tenant app, hence users from other AAD tenants can easily access this app using the app's sign-in URL. Let's say we have another tenant called Tenant B and a user of tenant B tries to sign-in to your app using his organization account. Once he accesses the app's signin URL and gets himself/herself authenticated to Tenant B's AAD and then provides the consents, the service principal object of this app of tenant A gets registered in Tenant B. This is an instance of the app of Tenant A.

Once this app is registered in Tenant B, now it can easily fetch access-tokens from Tenant B for accessing any resource of Tenant B like making Graph API calls to call OneDrive.

The following error Sigin Error: AADSTS50020: User account 'sakti@saktimohapatra.onmicrosoft.com' from identity provider 'https://sts.windows.net/a3750407-35a9-4274-a3f3-52d7e6f9cf0b/' does not exist in tenant 'nowigence.com' and cannot access the application 'c5a7c431-a09c-48b8-9de4-3b1ded0c68c6'(myonedrivetest) in that tenant. is popping up because the user sakti@saktimohapatra.onmicrosoft.com does not exist in the following tenant nowigence.com abut while accessing the multi-tenant app from nowigence.com tenant you used a use the user of the actual tenant where the app was initially registered. To fix this, you need to access this app using a user of the nowigence.com.

Hope this helps.

Do let us know if this helps and if there are any more queries around this, please do let us know so that we can help you further. Also, please do not forget to accept the response as an Answer; if the above response helped in answering your query.



· 3
10 |1000 characters needed characters left characters exceeded
Toggle Comment visibility. Current Visibility: Visible to all users

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

SaktiMohapatra-3019 avatar image SaktiMohapatra-3019 ·

Hi @soumi-MSFT,

Thank for the reply. This is the answer. But, I don't see any option to accept as answer.

0 Votes 0 ·
bharathn-msft avatar image bharathn-msft SaktiMohapatra-3019 ·

@SaktiMohapatra-3019 We really appreciate your feedback, the reason you are not able to see the option to accept as answer is because this thread was created as site feedback instead of question on the platform. Currently accepting the answer option is limited to question and not available for "site feedback".

Currently we cannot convert a site feedback to a question.

Hope this information helps. Please let us know if you have any further queries.

0 Votes 0 ·
SaktiMohapatra-3019 avatar image SaktiMohapatra-3019 bharathn-msft ·

Hi @bharathn-msft

Thanks for the response. I understand but still why, I am not able to post to my Query created before. Can you please enable it?
https://docs.microsoft.com/en-us/answers/questions/128005/is-it-possible-for-us-to-create-an-app-on-our-azur.html

0 Votes 0 ·

Your Opinion Counts

Share your feedback, or help out by voting for other people's feedback.

Related Feedback

I need to delete the screenshot ASAP because it has confidential information.

updates? really?