Failed to retrieve Azure auth token. Account must be added to the directory
I have an Active Directory object in Azure that has a native client application.
The application has all the necessary permissions to be accessed by the Service Management API.
In the AD directory, I have 2 users added. One is the account I was logged in as when I created the directory object. This account was added automatically when the directory was created. The other is one that I manually added after creating the directory object.
So, in the example below, Account 2 was the account I was logged in as when creating the directory. Account 1 I added manually.
When I try to retrieve an access token from the oauth2 endpoint with Account 2 credentials, I get the error:
AADSTS50034: To sign into this application the account must be added to the REDACTED directory.
The account is clearly added to the directory, however. Furthermore, when I use the credentials for Account 1, I am able to successfully authenticate. The only things I'm changing in my script are the username and password. The client ID and tenant ID remain the same.
Why am I getting the error above when the account I am using is clearly a user of the directory?
I found the answer in a different thread. If I'm understanding it correctly, it seems like automated sign-in can only be done from an account sourced from Azure Active Directory, and not from a Microsoft account.
- Get username from Azure Identity
- What prevents Databricks IP access lists from being executed
- HTTP 404 error with Swagger UI on Azure Functions app
- Azure devops - build number vs build id
- Unable to Retrieve Hidden MailFolders (isHidden = true) with Microsoft Graph API
- Parse array & json to right numbers of column
- Run script on Azure VM Scale Set when deprovisioning
- Azure Pipeline to trigger Pipeline using YAML
- Keycloak Admin Console Login - Infinite Loop
- Make Azure Keyvault secrets available in entire pipeline
- Azure Logic Apps - Queries for telemetry 2.0 show no results
- Print function not working without flush=True when used with the While loop
- Cannot authorize variable group in Azure Pipelines
- Azure Maps rejecting Route Request with ZipCode
- Create-React-App hosted in Azure getting a 404 with manual refresh or by typing the url manually on any page except the home page
- How to set up a simple Next.js web app with CI/CD on Azure?
- How to avoid explicitly acquiring access tokens when calling Microsoft Graph API in Node.js?
- Why I'm getting 404 Resource Not Found to my newly Azure OpenAI deployment?
- Scanning for malware in files uploaded to Azure
- Azure blob, controlling filename on download
- How to delete/clear active/dead-letter messages from Azure Service Bus Queue?
- How to Generate .AAB file and Sign Android app Bundle using azure pipeline
- Get Access Token from Microsoft Graph for ClientId with delegated permissions
- Can't create password containing parentheses in Azure CLI
- Azure Web App Cannot Access Azure Container Registry Using Managed Identity
- Azure Access token just created but not capable to verify that is authentic
- Querying azure table storage for null values
- Azure App Functions, Storage queue trigger
- Error while running Terraform Import Command to import Azure Key Vault
- How to get Node.js app running on Azure App Service?