Azure AD Login with groups get error AADSTS50011

0
votes

I have an azure website that use ADD login, it works fine locally. I have Authentication Web URIs setting

https://hcmerp-admin-dev-slot.azurewebsites.net/
https://localhost:5001/signin-oidc
https://hcmerp-admin-dev-slot.azurewebsites.net/signin-oidc

I get this error when I trying to login

AADSTS50011: The reply URL specified in the request does not match the reply URLs configured for the 
application: 'e6ac92bc-9a0d-4dd7-ba6f-41428cf0b04f'.

The URL on the error page is

https://login.microsoftonline.com/27b36724-47e7-4a5d-a318-e26c4968d3c2/oauth2/authorize? 
client_id=e6ac92bc-9a0d-4dd7-ba6f-41428cf0b04f&redirect_uri=http%3A%2F%2Fhcmerp-admin-dev- 
slot.azurewebsites.net%2Fsignin-oidc + more
2
azure-active-directory
see: stackoverflow.com/questions/63776175/…Carl Zhao
Hi, @Benzhi Pan Does this help you?Carl Zhao

2 Answers

0
votes

The URL says it is using the following redirect URI parameter: http%3A%2F%2Fhcmerp-admin-dev- slot.azurewebsites.net%2Fsignin-oidc. Note at the start it says "http", not "https".

Reply URLs check scheme as well. For some reason your app is redirecting to HTTP and not using HTTPS for the redirect URI parameter.