User Access Url not working for the SAML application onboarded using Graph Api


Hi Team,
When I'm creating an application through Graph API and then trying to access the user access url it is giving the below error.

{"StatusCode":500,"StatusDescription":"InternalServerError","Message":"IDX10214: Audience validation failed. Audiences: 'System.String'. Did not match: validationParameters.ValidAudience: 'System.String' or validationParameters.ValidAudiences: 'System.String'."}

But when I'm trying to create the same application manually with same configuration it is working fine.

Microsoft Graph
Microsoft Graph
A Microsoft programmability model that exposes REST APIs and client libraries to access data on Microsoft 365 services.
9,151 questions
Microsoft Entra ID
Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
17,581 questions
{count} votes

1 answer

Sort by: Most helpful
  1. CarlZhao-MSFT 31,976 Reputation points

    Hi @Bharat Kumar Hazar Hazar (iCORE-CRS)

    Use to decode your access token and check the aud claim to make sure it matches the target API URL.