Azure AD authentication : Permission error while fetching access token

1
votes

While doing the authentication using Azure AD, i am getting this error.

AADSTS90008: The user or administrator has not consented to use the application with ID 'Application (client) ID'(appname). This happened because application is misconfigured: it must require access to Windows Azure Active Directory by specifying at least 'Sign in and read user profile' permission.

The API permission configured in my application registered in AD are

enter image description here

But after this error if check in my application permissions page under user consent tab, i can see three permissions.

enter image description here

Third one which i have not added to my application When checked, the user permission is enabled only for the third one, not the required two . User has given consent while logging in .

the consent screen looks like this:

enter image description here

How can i fix this ?

1
c#azureauthenticationactive-directoryazure-active-directory

1 Answers

1
votes

You just need to use the "Grant admin consent for {your tenant}" feature to do the admin consent for your tenant. The users in your tenant will have the required permissions.

This feature currently appears to have display issues. The cleanest approach should be to create a new Azure AD app and use this button to complete the admin consent.

enter image description here