Test with postman get error 401 Unauthorized even if Azure AD Authentication is OK

Question

I have created a web api in .NET 5 and then I published it on Azure.

Here how I configured the web api in my startup:

public void ConfigureServices(IServiceCollection services)
{
    services.AddMicrosoftIdentityWebApiAuthentication(Configuration, "AzureAd");
    ...
}

public void Configure(IApplicationBuilder app, IWebHostEnvironment env)
{
    ...

    app.UseAuthentication();
    app.UseAuthorization();

    app.UseEndpoints(endpoints =>
    {
        endpoints
            .MapControllers()
            .RequireAuthorization();
    });
}

And that is the appsettings.json:

"AzureAd": {
  "Instance": "https://login.microsoftonline.com/",
  "Domain": "***.com", //Domain name configured in Azure  
  "TenantId": "***", // Tenant Id configured in Azure  
  "ClientId": "***", //  Client Id configured in Azure  
  "CallbackPath": "/signin-oidc"
}

Now I enabled Azure AD Authentication. Here the steps:

I went on Azure AD and I registered a new app:
I configured the platform
I added the secret for postman

Now, I open postman and I configure authentication for my test:

When I click on Get New Access Token, I get it correctly:

But now, if I call my API I get 401 Unauthorized error:

What is still wrong in my configuration? Any help please?

Thank you

ShrutiJoshi-MT ShrutiJoshi-MT · Accepted Answer · 2021-08-06T08:15:00

Solution 1:Ensure that while requesting the Authentication Token you are specifying the resource parameter. Without the parameter you will still get the token but the 401 Error will occur as there is no valid resource.

Solution 2: Add the authorization data to Request Headers.

Solution 3:Also Ensure App ID URI mentioned in the Service.

Go to App Services > Authentication blade > Advanced Settings

For more details refer this link

Test with postman get error 401 Unauthorized even if Azure AD Authentication is OK

1 Answers