25,159 questions
AADSTS650051: Invalid domain name in the request url. When trying to Login to Web App using Azure AD integration
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(128, 8%, 22%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EA%3C/text%3E%3C/svg%3E)
Anonymous
Getting AADSTS650051: Invalid domain name in the request url as response after giving the credentials
Service : Azure AD
Tenant : Single Tenant Id
We have created MSAL4j servlet application for integrating with Azure AD, created a APP in tenant got the details of client Id , tenant Id , Client secret value from the registered App and even configured redirect URI for the APP in Azure AD.
After giving the UserName and Password I am being redirected to page with message "AADSTS650051: Invalid domain name in the request url." instead of redirect URI, Please let me know if am doing anything wrong or if any configuration is missing
Microsoft Security | Microsoft Entra | Microsoft Entra ID
{count} votes
-
Anonymous
2022-11-22T15:56:02.59+00:00 Here the details of request
====================
Request Id: 3984ac1b-fa26-4743-b333-b912ed6e9000
Correlation Id: 61ac5a73-fd7c-4259-a21e-40df1172733a
Timestamp: 2022-11-22T15:54:51Z
Message: AADSTS650051: Invalid domain name in the request url. -
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(44.800000000000004, 78%, 14%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESG%3C/text%3E%3C/svg%3E)
Sandeep G-MSFT 20,911 Reputation points Microsoft Employee Moderator2022-11-23T03:30:14.087+00:00 Looks like after authentication when Azure AD is posting the token to configured redirect URI, Azure AD is throwing an error.
The redirect URI configured for this application is not configured correctly.You can follow below article to configured and add the redirect URI value accordingly.
https://learn.microsoft.com/en-us/azure/active-directory/develop/reply-urlLet me know if you have any further questions
-
Anonymous
2022-11-23T16:49:19.81+00:00 I dont see any issue with the redirect URL configured
Redirect URL: https://iedssnprd.fssa.in.gov/msal4j-servlet-auth/auth/redirectI am able to hit the resource at "auth/redirect" when I disable authentication and directly hit the
redirect URL : https://iedssnprd.fssa.in.gov/msal4j-servlet-auth/auth/redirect
Can you please let me know what I should be checking further to resolve this issue
-
Akshay-MSFT 17,956 Reputation points Microsoft Employee Moderator2022-12-23T04:30:25.103+00:00 Hello,
From your request URL I could find that you have given following parameters:
response_type=code and nonce=7b117b27-4994-44ab-aaff-31c2d77bfbb6, but nonce could be only used when you Request an ID token as well or hybrid flow
So your response_type should be response_type=code&id_token
Also within app registartion you should have both Access and ID token checked:
Thanks,
Akshay Kaushik
Sign in to comment
Sign in to answer