Share via

Microsoft Entra "You can't sign in here with a personal account. Use your work or school account instead."

MF 20 Reputation points
2025-01-10T05:06:53.6333333+00:00

Hi

I am an getting error "You can't sign in here with a personal account. Use your work or school account instead." while using MicroSoft Entra for authentication. Kindly note, work account authentication is working.

Tried changing the "signInAudience": parameter in the Manifest as described on this webpage https://learn.microsoft.com/en-us/entra/identity-platform/supported-accounts-validation to "AzureADandPersonalMicrosoftAccount"

But, it throws an error "Failed to update XXX application. Error detail: Property accessTokenAcceptedVersion is invalid. [iYdh8y90en49pZclW7Kh8a]"

"Failed to update XXX application. Error detail: Unable to change signInAudience to AzureADandPersonalMicrosoftAccount. Application must accept Access Token Version 2. paramName:AccessTokenAcceptedVersion, paramValue:,objectType: Microsoft.Online.DirectoryServicesApplication [8BEv+c/yCN+yq6MjpFmq3]"

When I tried adding

"accessTokenAcceptedVersion": 2, to the Manifest. I got the following error

"Failed to update XXX application. Error detail: The application was not found. If the application was just created, wait a few minutes and refresh the page [8BEv+c/yCN+yq6nMjpFmq3]"

Request your kind help.

Microsoft Security | Microsoft Entra | Microsoft Entra ID
0 comments
Accepted answer
  1. Raja Pothuraju 24,710 Reputation points Microsoft External Staff Moderator
    2025-01-10T08:32:36.1066667+00:00

    Hello @MF,

    I'm glad that you were able to resolve your issue and thank you for posting your solution so that others experiencing the same thing can easily reference this! Since the Microsoft Q&A community has a policy that "The question author cannot accept their own answer. They can only accept answers by others ", I'll repost your solution in case you'd like to "Accept " the answer.

    Issue: Microsoft Entra "You can't sign in here with a personal account. Use your work or school account instead."

    Solution: Resolved by @MF.

    Below are the steps followed by @MF.

    https://github.com/Azure/azure-powershell/issues/17090

    The property is called requestedAccessTokenVersion and is defined here: https://github.com/microsoftgraph/msgraph-sdk-powershell/blob/dev/openApiDocs/v1.0/Applications.yml#L7418 As a sidenote (and to prevent any confusion), in the Graph API, the property is called requestedAccessTokenVersion but in the manifest blade for an app registration (in the Azure Portal), the property is called accessTokenAcceptedVersion

    If you have any other questions or are still running into more issues, please let me know. Thank you again for your time and patience throughout this issue.

    Please remember to "Accept Answer" if any answer/reply helped, so that others in the community facing similar issues can easily find the solution.

    Thanks,
    Raja Pothuraju.

    0 comments

1 additional answer

Sort by: Most helpful
Most helpful Newest Oldest
  1. MF 20 Reputation points
    2025-01-10T05:19:12.2466667+00:00

    Got it sorted

    https://github.com/Azure/azure-powershell/issues/17090

    The property is called requestedAccessTokenVersion and is defined here:

    https://github.com/microsoftgraph/msgraph-sdk-powershell/blob/dev/openApiDocs/v1.0/Applications.yml#L7418

    As a sidenote (and to prevent any confusion), in the Graph API, the property is called requestedAccessTokenVersion but in the manifest blade for an app registration (in the Azure Portal), the property is called accessTokenAcceptedVersion

    0 comments

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.