Hardware Token For Owner (Global Administrator Account)

Sam 1

I am trying to enable hardware OTP token for owner (global administrator) used to create the account. Under OATH token, I am able to upload the file which contains the secret keys, but I get the error message.

Error Message: User does not exist in the current directory.

However, the same process works for member or regular user, but not for owner (global administrator). I would really appreciate any insight into it.

soumi-MSFT 11,716 Reputation points Microsoft Employee

2020-05-21T15:50:25.17+00:00

@Sam , Thank you for reaching out. I have a small query here to understand the issue better. I just wanted to check if this issue is happening for only one specific Global Admin or its for all the Global Admins that you are getting that error while uploading the secret keys file?

Also, It would be great if you can share a screenshot of the error.

I would also like to make a wild guess looking into the error that may be the userPrincipalName that you specified in the secret keys file that you are uploading. Also what privileges does your account hold using which you are trying to upload the file?

Do help us with these details and I would try my best to help you further.

1 answer

Sam 1 Reputation point

2020-05-21T16:57:15.083+00:00

The process works for users with admin, global admin, or other privileges, but not for the owner (global administrator) used to create the Azure account.

I uploaded the secret file with username and secrets. It would work for other users, so there is no issue with the formatting of the file.

The error image is attached. However, I just wanted to add that I can see the owner (global admin) user in the AD.
Please sign in to rate this answer.
soumi-MSFT 11,716 Reputation points Microsoft Employee

2020-05-26T05:03:15.677+00:00

@Sam , This looks little weird, as the user is present in the directory still its not being fetched. This would need some deeper investigation and I think it would be difficult to troubleshoot it over Forum. I would suggest you to get a support ticket created with our Support Team, so that they can help you better over the call.

Make sure you have a valid Azure Subscription before you try to create the case, as the Subscription would be needed for the case creation. Do let us know if you face any difficulties in creating a case, so that we can help you with that.
Sign in to comment