question

NelsonDanielRCTRUSCGUSA-3179 avatar image
0 Votes"
NelsonDanielRCTRUSCGUSA-3179 asked MarileeTurscak-MSFT answered

Reply URL for registered app in portal.azure.us

I am getting the following error when trying to get my access token to use the APIs to integrate SAS VIYA and Microsoft 365 OneDrive;
Microsoft
Sign in
Sorry, but we’re having trouble signing you in.

AADSTS50011: The reply URL specified in the request does not match the reply URLs configured for the application: '67165405-bcd6-4d2b-858c-a03ee3bb1821'.
You are accessing a U.S. Government (USG) Information System (IS) that is provided for USG-authorized use only.

Troubleshooting details
If you contact your administrator, send this info to them.
Copy info to clipboard
Request Id: 97dbf685-5728-4103-a99f-1bb5a9d63900
Correlation Id: 14854012-998e-4333-a642-de9a6488cec9
Timestamp: 2021-10-01T17:52:37Z
Message: AADSTS50011: The reply URL specified in the request does not match the reply URLs configured for the application: '67165405-bcd6-4d2b-858c-a03ee3bb1821'.
Flag sign-in errors for review: Enable flagging
If you plan on getting help for this problem, enable flagging and try to reproduce the error within 20 minutes. Flagged events make diagnostics available and are raised to admin attention.

The URL that I am putting in the browser to get the access token (which when returned should be about 700 characters) is
https://login.microsoftonline.com/(my tenent_id)/oauth2/authorize?client_id=67165405-bcd6-4d2b-858c-a03ee3bb18
21&response_type=code&redirect_uri=https://login.microsoftonline.com/common/oath2/nativeclient&resource=https://graph.microsoft.com

I am using delegated permissions in the application registration of Files.ReadWriteAll, User.Read, and Sites.ReadWrite.All. My application name is CG-SAS_VIYA

azure-ad-authentication
· 1
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

@NelsonDanielRCTRUSCGUSA-3179
As tag "office-onedrive-client-itpro" focus on general issues of OneDrive, but your issue seems to be more related to Azure authentication. I would modify the tag.
Thanks for your understanding.

0 Votes 0 ·
NelsonDanielRCTRUSCGUSA-3179 avatar image
0 Votes"
NelsonDanielRCTRUSCGUSA-3179 answered

Thank you for your response. Yes it is dealing with the portal.azure.us and application registration so to get and access token to using in my api calls.

5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

MarileeTurscak-MSFT avatar image
0 Votes"
MarileeTurscak-MSFT answered

Hi @NelsonDanielRCTRUSCGUSA-3179,

This error means that the Redirect URI that you have configured in your app registration for the application "67165405-bcd6-4d2b-858c-a03ee3bb1821" doesn't match what you have configured in the application code. You need to make sure that the app ID/client ID, Redirect URI, and tenant ID in your app registration matches exactly what you have in your code configuration.

When I search your correlation ID and timestamp, however, I do not get a reply URL error. Instead I get the error, "DPX cloud redirect from 'microsoftonline.com' to 'MicrosoftOnline.US' is not supported."

Note that for the Azure US Government cloud, if you're trying to work with other users outside of your tenant:

B2B collaboration is currently only supported between tenants that are both within Azure US Government cloud and that both support B2B collaboration. If you invite a user in a tenant that isn't part of the Azure US Government cloud or that doesn't yet support B2B collaboration, the invitation will fail or the user will be unable to redeem the invitation.

Let me know if this helps.

Thanks,

Marilee

5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.