from authorize to error–resource not authorized for the account


image

 

Location: ms-app://s-1-15-2-368411030-1769956373-826299661-4019874439-3442704750-222489034-3800660787/?error=invalid_resource&error_description=AADSTS50001%3a+Resource+%27https%3a%2f%2freso987.azure-mobile.net%2flogin%2faad%27+is+not+registered+for+the+account.%0d%0aTrace+ID%3a+c2a75697-0623-4ca1-9e04-8e1954d8b571%0d%0aCorrelation+ID%3a+a08d4056-0081-4fa7-b3aa-ecdf5341c3ba%0d%0aTimestamp%3a+2014-04-15+01%3a29%3a52Z

The solution is to NOT do what the instructions call for! (This is the second time being too truthful is hurting me, thinking like an NSA contractor TRYING to show one is trustworthy.)

image

 

Sample instructions suggest, for the webAPI part of the equation that you use a different signin and appid  (than then name of the redirect URI at the mobile site, for aad) DON’T DO IT. HAVE ALL THREE THE SAME.

Ignore step 8, of http://azure.microsoft.com/en-us/documentation/articles/mobile-services-how-to-register-active-directory-authentication/ when having “sso”. just use aad.

Advertisements

About home_pw@msn.com

Computer Programmer who often does network administration with focus on security servers. Very strong in Microsoft Azure cloud!
This entry was posted in coding theory. Bookmark the permalink.