Tenant's auth failing on multi-tenant ms entra app with AADSTS900971 despite giving redirect URL

Rashi Jaiswal 0 Reputation points
2024-02-03T04:25:22.81+00:00

We have created a multi-tenant entra app which we want to use with our customers when they perform Oauth with microsoft. There are other tenants with whom this app has worked perfectly fine. But one of the tenants (let's say Tenant-A) is getting an error AADSTS900971: No reply address provided, even though we mention the redirect URI when using https://login.microsoftonline.com/organizations/oauth2/v2.0/authorize . Is this something to do with settings on their AzureAD?
Additionally on the error page there's a warning at the bottom saying Warning, access to this system is restricted to authorised Tenant-A personnel only

Microsoft Entra
{count} votes

3 answers

Sort by: Most helpful
  1. JimmySalian-2011 41,631 Reputation points
    2024-02-03T16:18:20.6733333+00:00

    Hi Rashi,

    The error states that the reply URL is not available, hence to fix this, you need to add a valid RedirectURI/ReplyURL in your app registration in AAD. So please check out your App in Entra ID and recheck the configuration.

    Hope this helps. JS

    == Please Accept the answer if the information helped you. This will help us and others in the community as well.


  2. Rashi Jaiswal 0 Reputation points
    2024-02-06T09:36:26.07+00:00

    Closing this question, since issue was something else. The authorize endpoint was being called with some old app's client-id.

    0 comments No comments

  3. JamesTran-MSFT 36,046 Reputation points Microsoft Employee
    2024-02-09T22:30:11.87+00:00

    @Rashi Jaiswal

    I'm glad that you were able to resolve your issue and thank you for posting your solution so that others experiencing the same thing can easily reference this!

    Issue:

    Tenant's auth failing on multi-tenant ms entra app with AADSTS900971 despite giving redirect URL

    We have created a multi-tenant entra app which we want to use with our customers when they perform Oauth with microsoft. There are other tenants with whom this app has worked perfectly fine. But one of the tenants (let's say Tenant-A) is getting an error AADSTS900971: No reply address provided, even though we mention the redirect URI when using https://login.microsoftonline.com/organizations/oauth2/v2.0/authorize . Is this something to do with settings on their AzureAD?

    Additionally on the error page there's a warning at the bottom saying Warning, access to this system is restricted to authorised Tenant-A personnel only

    Solution:

    The authorize endpoint was being called with some old app's client-id.

    If I missed anything please let me know and I'd be happy to add it to my answer, or feel free to comment below with any additional information.

    I hope this helps!

    If you have any other questions, please let me know. Thank you again for your time and patience throughout this issue.

    0 comments No comments