Unable to update Application ID URI

Harry Burns 21 Reputation points
2022-12-20T08:37:18.437+00:00

Hi, I am getting error when try to set Application ID URI.

I created a tab and bot application and implementing SSO to it. As per document I have to set the Application ID URI and have to provide a valid domain where the tab app is served. But my Tab app is hosted as a static web app in Azure Storage account. And have a primary end point. When I try to add the primary end point in place of valid domains I am getting error.

I'm not sure which valid domains I have to update. And I am new to Azure. Help me with this.

Below is the error message for reference.

Failed to update Application ID URI application property. Error detail: Values of IdentifierUris property must use a verified domain of the organization or its subdomain: mobilecaressoa709513tab.z19.web.core.windows.net

Azure AI Bot Service
Azure AI Bot Service
An Azure service that provides an integrated environment for bot development.
736 questions
Microsoft Teams
Microsoft Teams
A Microsoft customizable chat-based workspace.
8,904 questions
Microsoft Teams Development
Microsoft Teams Development
Microsoft Teams: A Microsoft customizable chat-based workspace.Development: The process of researching, productizing, and refining new or existing technologies.
2,777 questions
0 comments No comments
{count} votes

Accepted answer
  1. Prasad-MSFT 5,516 Reputation points Microsoft Vendor
    2022-12-20T11:03:51.883+00:00

    Application ID URI value uniquely identifies the application when it is used as a resource, allowing tokens to be requested that grant access. It is used as a prefix for scopes you create. The App ID URI is one of the ways an application is identified in protocol messages. For a single-tenant application, the App ID URI need only be unique within that tenant. For a multi-tenant application, it must be globally unique so Azure AD can find the app across all tenants. Global uniqueness is enforced by requiring that the App ID URI's host name matches one of the Azure AD tenant's verified publisher domains.

    For a single-tenant app, you can use the default value, which is in the form api://<application-client-id>. You can also specify a more readable URI like https://contoso.com/api based on one of the verified domains for your tenant. For a multi-tenant app, you must provide a custom URI.

    Ref: https://learn.microsoft.com/en-us/azure/active-directory/develop/security-best-practices-for-app-registration#application-id-uri

    Thanks,

    Prasad Das


    If the response is helpful, please click "Accept Answer" and upvote it. You can share your feedback via Microsoft Teams Developer Feedback link. Click here to escalate.

    0 comments No comments

0 additional answers

Sort by: Most helpful