HELP: User Does Not have the necessary AAD Permissions to register an app in the tenant

F Chari 35 Reputation points
2023-02-20T23:15:31.4066667+00:00

Good day all,

I'm an App Developer for the Microsoft Store, and I am encountering a permissions error when attempting to register an app. Thing is, I have managed to register 150+ apps and the issue just sprang up without changing anything at all in Azure. Here is what is going on:

  1. My user account is the sole user/account on the tenant xxxxxxxxxxx-xxxx-xxxx-xxxx-xxxxxx0db9d. This user is the Global Administrator/Owner of this account:

image

image (1)

  1. My user has the Global Administrator Role assigned to it already, as shown below:   

image (2)

  1. My user also has the Developer Role assigned to it as shown below:

image (3)

  1. Looking in the Microsoft Partner Center, this is the same account that I am logged in to when attempting to register apps. As mentioned before, this account has successfully registered 150+ apps without issue until now. This is the same user that has the Global Admin and Developer roles and permissions assigned to it as shown in steps 2 and 3:

image (4)

  1. When attempting to register an app in the Partner Center, I get the following error message, and as shown below, the user in question is my user and that user has the Global Administrator AND Application Developer roles as shown in step 2 and 3:

image (5)

  • As directed by the error message, I also verified that App Registrations is Enabled, and also enabled Guest Users have same access for good measure
  • It's also interesting to note that the error message is describing tenant xxxxxxx-xxxx-xxxx-xxxx-xxxxxxxx1255a. However, my user is a part of Tenant xxxxxxx-xxxx-xxxx-xxxx-xxxxxx0db9d. As shown below, this is the Only Tenant on my account that I can see, so not sure why the error message is referencing a tenant ID that I am not a part of:

image (8)

I have exchanged emails with support and have given me the same response:

Sorry for the frustration. However, it looks as if you profile does not have the proper permission for reserving  app names. Please contact your contacts Global Administrator to grant the permission. The link here: https://learn.microsoft.com/en-us/partner-center/create-user-accounts-and-set-permissions will help assign roles. You have not selected the an administrator for your account. Please let me know if you have any additional questions or concerns.

As stated above, I am the Only user on my account, tenant, and only have a single AD account.

It almost sounds to me like what they are seeing on their end is that I am a part of another tenant that I have no control over? Is that the case for registering apps? If so, are they able to set the appropriate roles/permissions on their end for me to continue registering apps?

Has anyone encountered this before, or is there someone at Microsoft I can reach out to and get this resolved? I am completely stuck.

Thanks all!

Microsoft Partner Center
Microsoft Partner Center
A Microsoft website for partners that provides access to product support, a partner community, and other partner services.
876 questions
Microsoft Partner Center API
Microsoft Partner Center API
Microsoft Partner Center: A Microsoft website for partners that provides access to product support, a partner community, and other partner services.API: A software intermediary that allows two applications to interact with each other.
313 questions

1 answer

Sort by: Most helpful
Most helpful Newest Oldest
  1. JamesTran-MSFT 36,371 Reputation points Microsoft Employee
    2023-02-24T18:32:09.4133333+00:00

    @F Chari

    Thank you for the detailed response and I apologize for the delayed response! From your issue, I'll do my best to summarize it below for my understanding.

    Issue:

    • Your user is the only account (Global Admin) within your tenant (....0db9d)
    • When signing into the Microsoft Partner Center, you're logging in with the same (only) account from your tenant (....0db9d). This account has also registered 150+ apps without any issues.
    • When attempting to register an app in the Partner Center, you get the below error message even though the user you're using is the same (only) one from your tenant (....0db9d).

    Error Message:

    The user account ....@gmail.com does not have the necessary AAD permissions to register an app in the tenant (....1255a). Please contact your IT administrator of the tenant (....1255a)...

    Troubleshooting:

    I'm not too familiar with the Microsoft Partner Center and I don't have access to register an app myself, but in order to troubleshoot your issue, can you try some of the below steps to see if they help resolve your issue or lead you in the right direction?

    Since the @gmail.com user that you've been using is having issues registering an app within the Partner Center.

    Because the error message that you're receiving is referencing another tenant (....1255a), and you showed that your user is only part of one tenant (....0db9d) within Azure AD.

    • Can you make sure you don't have any other tenants listed for your user within the Partner Center? You should be able to do this by clicking your profile in the upper right corner of the Partner Center portal.User's image

    I've also added the Microsoft Partner Center tag to your thread so their community can look into this issue as well.

    If you have any other questions, please let me know.

    Thank you for all of your time and patience throughout this issue!