Our application uses Azure Communication Services to connect to MS Teams meeting. For improving the user experience, the application obtains auth tokens via oAuth. For one specific tenant, we are facing issues with the following error output in redirect uri,
error: invalid_client
error_description: AADSTS650052: The app is trying to access a service '1fd5118e-2576-4263-8130-9503064c837a'(Azure Communication Services) that your organization 'TENANT_ID_HERE' lacks a service principal for. Contact your IT Admin to review the configuration of your service subscriptions or consent to the application in order to create the required service principal.\r\nTrace ID: 6628d321-a58f-4f2c-9a23-f4d156633700\r\nCorrelation ID: 18b53e95-2dca-4b95-8c27-4ea104f9439b\r\nTimestamp: 2022-09-30 10:41:39Z
error_uri: https://login.microsoftonline.com/error?code=650052
Without using "Teams.ManageCalls" scope, the oAuth code comes out fine. Below are the scopes that are being requested,
calendars.read
OnlineMeetings.ReadWrite
https://auth.msft.communication.azure.com/Teams.ManageCalls
openid
profile
Is there is way to resolve this issue ?