The certificate with identifier used to sign the client assertion is expired on application

Prashant Meshram 41 Reputation points
2022-10-18T17:49:34.617+00:00

Hi Team,

I am trying to create some external tables from the azure synapse on the parquet files that I have load into the Azure Data Lake storage Gen2.
I also created the app in azure directly and extended the expiry date and also provided the Synapse and datalake access to this app in IAM control. Still getting below error. Could you please suggest what exactly I need to update or which permission I am missing.

Failed to execute query. Error: The Azure Key Vault client encountered an error with message '[error:303, info:401, state:0]
Cannot get token due to incorrect credentials. Make sure the credential string or certificate is valid.
MoreDetails: AADSTS700027: The certificate with identifier used to sign the client assertion is expired on application.
[Reason - The key used is expired., Thumbprint of key used by client: '***************CA7CD3A1CBC******6B2',
Found key 'Start=07/12/2022 18:44:00, End=10/10/2022 18:44:00', Please visit the Azure Portal,
Graph Explorer or directly use MS Graph to see configured keys for app Id 'ca***85-6cff-4bb3-acfa-79b***c490'.
Review the documentation at https://learn.microsoft.com/en-us/graph/deployments to determine the corresponding service endpoint
and https://learn.microsoft.com/en-us/graph/api/application-get?view=graph-rest-1.0&tabs=http to build a query request URL,
such as 'https://graph.microsoft.com/beta/applications/cace5085-6cff-4bb3-acfa-79b76e1fc490'].
Trace ID: 88e04065-a14c-4c20-9586-428107503f00
Correlation ID: 8302e998-c63f-4dd8-b398-19dcc502f6da
Timestamp: 2022-10-18 17:42:44Z'.

SQL Server on Azure Virtual Machines
Azure SQL Database
Azure Data Lake Storage
Azure Data Lake Storage
An Azure service that provides an enterprise-wide hyper-scale repository for big data analytic workloads and is integrated with Azure Blob Storage.
1,335 questions
Azure Synapse Analytics
Azure Synapse Analytics
An Azure analytics service that brings together data integration, enterprise data warehousing, and big data analytics. Previously known as Azure SQL Data Warehouse.
4,346 questions
0 comments
Accepted answer
  1. PRADEEPCHEEKATLA-MSFT 76,586 Reputation points Microsoft Employee
    2022-10-20T08:37:18.223+00:00

    Hello @Prashant Meshram ,

    Thanks for the question and using MS Q&A platform.

    From the above error message `MoreDetails: AADSTS700027: The certificate with identifier used to sign the client assertion is expired on application.

    [Reason - The key used is expired., Thumbprint of key used by client: 'CA7CD3A1CBC6B2', Found key 'Start=07/12/2022 18:44:00, End=10/10/2022 18:44:00'` - it clearly says as the key is expired on 10/10/2022 18:44:00.

    To resolve this issue - you may create a new key and re-try.

    Hope this will help. Please let us know if any further queries.

    • Please don't forget to click on 130616-image.png or upvote 130671-image.png button whenever the information provided helps you. Original posters help the community find answers faster by identifying the correct answer. Here is how
    • Want a reminder to come back and check responses? Here is how to subscribe to a notification
    • If you are interested in joining the VM program and help shape the future of Q&A: Here is jhow you can be part of Q&A Volunteer Moderators
    0 comments

0 additional answers

Sort by: Most helpful
Most helpful Newest Oldest