This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(92.8, 57.00000000000001%, 18%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ECC%3C/text%3E%3C/svg%3E)
Hello, I created a new tenant for Azure Active Directory and then registered a web app. The supported accounts type for the app is Accounts in any organizational directory (Any Azure AD directory - Multitenant) and personal Microsoft accounts (e.g. Skype, Xbox). When I go to sign in with a personal account on the /common/oauth2 endpoint, I am able to consent and sign in. However, when I go to sign in with the tenant's global admin account (which is also the account I used to register the app) on the common endpoint, I get a 'Need admin approval' error. But then, when I use the tenant specific authorization endpoint (eg /{my_tenant_id}/oauth2/...) instead of the common endpoint, I don't get this error and am able to sign in. I cannot use that endpoint though because then I won't be able to authorize personal Microsoft accounts. Shouldn't the global admin account for the tenant already be an admin and subsequently be able to sign in for the common endpoint? Why doesn't the common endpoint allow the tenant Microsoft account (the global admin account) to sign in?
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(246.4, 20%, 33%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESM%3C/text%3E%3C/svg%3E)
Hi @Clay Casper ,
Just checking in to see if the below answer helped. If this answers your query, please don’t forget to click "Accept the answer" and Up-Vote for the same, which might be beneficial to other community members reading this thread. And, if you have any further query do let us know.
Thanks,
Shweta
Hello @Clay Casper
Thank you for your post on this community space.
I wonder if you followed the next steps shown down below:
Looking forward to your feedback,
Cheers,
Please "Accept the answer" if the information helped you. This will help us and others in the community as well.