This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(102.4, 85%, 19%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EAP%3C/text%3E%3C/svg%3E)
Hi Everyone,
I got a production issue.
The details of the issue are :-
One or more errors occurred. (A configuration issue is preventing authentication - check the error message from the server for details. You can modify the configuration in the application registration portal. See https://aka.ms/msal-net-invalid-client for details. Original exception: AADSTS7000218: The request body must contain the following parameter: 'client_assertion' or 'client_secret'.
Trace ID: a69f37b4-9c44-4c2d-86de-7a51d6984c00
Correlation ID: 9b9c9c29-1255-4e0d-bec6-932938f21eeb
Timestamp: 2023-09-28 04:59:44Z)'
Please help on this on urgent basis.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(166.4, 79%, 26%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EG%3C/text%3E%3C/svg%3E)
Hello, I have same error; I'm trying to authenticate using MS Extra ID (Login form), of course it does not need Client Secret; So, I got same error despite of setting was set on Yes according of screen above. Thank you in advanced
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(246.4, 36%, 33%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EDN%3C/text%3E%3C/svg%3E)
I have an app just started doing the same thing using PublicClientApplicationBuilder (it doesn't have the SecretValue option that ConfidentialClientApplicationBuilder has) and, of course, 'Allow Public Client Flows' is set to Yes. Something has changed at the MS end!
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(131.20000000000002, 51%, 22%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ELC%3C/text%3E%3C/svg%3E)
Running into this with an R Language app, using AzureAuth package - I have Allow Public Client Flows' is set to Yes as well
It is definitely changing rules and API interfaces time to time quickly, I use API for C# and some classes and methods not exists after update MS.Graph DLLs with new versions from 4.0 to 5.0, but anyway it should be replacement info somewhere. e.g. class which was used to login with Extra ID DelegateAuthenticationProvider, not exist in new version DLLs.
I have the same error despite having the setting set to Yes.
Thank you for your post!
I understand that you're running into the below error message and to hopefully help point you in the right direction or resolve your issue, I'll share my findings with below.
Error Message:
AADSTS7000218: The request body must contain the following parameter: 'client_assertion' or 'client_secret'.
Findings:
Based off your error code - AADSTS7000218, I found some Stack Overflow threads and internal issues relating to your error message, and this could be due to the wrong App Registration default client type being used.
Client Credentials flow, Authorization Code flow, and On-Behalf-Of flow are used by Confidential client to request a token. Azure AD will return the above error if the request is missing a client secret or a client assertion.
In order to resolve this, you'll need to:
For more info - AADSTS7000218
Additional Links:
I hope this helps!
If you have any other questions, please let me know. Thank you for your time and patience throughout this issue.
If the information helped address your question, please Accept the answer. This will help us and also improve searchability for others in the community who might be researching similar information.