oAuth Authentication issue with Teams.ManageCalls permission

Saravana 161 Reputation points
2022-09-30T11:00:24.137+00:00

Our application uses Azure Communication Services to connect to MS Teams meeting. For improving the user experience, the application obtains auth tokens via oAuth. For one specific tenant, we are facing issues with the following error output in redirect uri,

error: invalid_client
error_description: AADSTS650052: The app is trying to access a service '1fd5118e-2576-4263-8130-9503064c837a'(Azure Communication Services) that your organization 'TENANT_ID_HERE' lacks a service principal for. Contact your IT Admin to review the configuration of your service subscriptions or consent to the application in order to create the required service principal.\r\nTrace ID: 6628d321-a58f-4f2c-9a23-f4d156633700\r\nCorrelation ID: 18b53e95-2dca-4b95-8c27-4ea104f9439b\r\nTimestamp: 2022-09-30 10:41:39Z
error_uri: https://login.microsoftonline.com/error?code=650052

Without using "Teams.ManageCalls" scope, the oAuth code comes out fine. Below are the scopes that are being requested,

calendars.read
OnlineMeetings.ReadWrite
https://auth.msft.communication.azure.com/Teams.ManageCalls
openid
profile

Is there is way to resolve this issue ?

Azure Communication Services
Azure Communication Services
An Azure communication platform for deploying applications across devices and platforms.
927 questions
{count} votes

Accepted answer
  1. SnehaAgrawal-MSFT 21,926 Reputation points
    2022-10-11T08:55:12.963+00:00

    @Saravana Apologies you are facing issue with this, reached out to product team and as per discussion it's a known issue and we are in-progress of updating the public documentation.

    Workaround Suggestion: Please run the following commands in Azure CLI

    Connect-AzureAD -TenantId "[Tenant_ID]"  
    Install-Module AzureAD # if missing  
    New-AzureADServicePrincipal -AppId "1fd5118e-2576-4263-8130-9503064c837a"  
    

    Let us know if further query or issue remains.


0 additional answers

Sort by: Most helpful

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.