Share via

AADSTS90023: Invalid STS request; Error occurs after accepting the invite sent after adding external email to Azure Users

John 20 Reputation points
2025-05-22T02:44:15.84+00:00

Error message: AADSTS90023: Invalid STS request

I sent an invite to an external user (via Azure) in order to add their email as part of an Audience in a Power BI app. However, when the external user clicked the "Accept invitation" button, they were met with the error message after they sign in to their email. I have tried contacting them to verify if the password their email used contains invalid characters (Self-service password reset policies - Microsoft Entra ID | Microsoft Learn).

Microsoft Security | Microsoft Entra | Microsoft Entra ID
Accepted answer
  1. Surya Prakash Kotte 3,200 Reputation points Microsoft External Staff Moderator
    2025-05-23T10:14:57.2466667+00:00

    Hello @John

    Based upon when you are sending an invite to external user you are getting an error:

    Try to delete any existing or pending guest account for that user in Azure Active Directory, then send a new invitation.

    Resend the invitation and ensure the user accepts it using the exact email address you specified. If the issue persists, ask the user to clear their browser cache or try a different browser.

    I hope this information is helpful. If not, please feel free to reach out — we’d be happy to assist you further.

    1 person found this answer helpful.

1 additional answer

Sort by: Most helpful
Most helpful Newest Oldest
  1. Megan Truong 720 Reputation points Independent Advisor
    2025-05-26T03:43:07.9266667+00:00

    Hello @John

    Based on your description, the request sent to Entra ID is either malformed or contains invalid parameters. This can happen in various scenarios, including when external users try to accept invitations to access resources like Power BI apps. I would love to know if the same error also happened while you invite the same external user in entra ID or if it only occurred while inviting in a Power BI app, then Power BI app team need to be engaged to check together and further fix the issue

    Here are some likely factors that can cause the issue:

    • Malformed or Corrupted Invitation Link: Sometimes the invitation link gets corrupted (e.g., line breaks or URL encoding issues) during transmission.
    • External User Already Has a Microsoft Account Conflict: If the invited email is associated with both a Microsoft personal account and a work/school account, it can cause confusion during login.
    • Tenant Configuration Issues: If the external user’s domain is not properly federated or if there are conditional access policies blocking the login, the request may fail.
    • Browser or Session Issues: Cached credentials or cookies can interfere with the login process.
    • Incorrect or Expired Invitation: The invitation might have expired or been invalidated

    Kindly let me know if this work for you or if you have any further question.

    If I have answered your question, please accept this as answer as a token of appreciation and don't forget to give a thumbs up for "Was it helpful"!

    Best regards,

    Megan.

    0 comments

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.