This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(156.8, 65%, 25%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EAR%3C/text%3E%3C/svg%3E)
I am trying to use the guide here:
https://github.com/AzureAD/microsoft-authentication-library-for-js/tree/dev/lib/msal-core
to login a user and request an access token to a custom Azure app service. After login is prompted and I login with my own account and try to request the access token using acquireTokenSilent, I get the AADSTS90009 error. The error mentions an application is requesting a token for itself and that this scenario is supported only if resource is specified using the GUID based App Identifier.
But when I try this same process with an admin account logged in, I can request a token successfully without this error. I'm assuming there is some sort of access or permission that this admin account has. Does anyone have an idea what permission I have to set?
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(310.4, 7.000000000000001%, 40%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EMT%3C/text%3E%3C/svg%3E)
Good Day,
Please have a look at the below thread.