Stuck at "Set up your device to get access" when login using azure (microsoft)

Question

Develop an app for my company. After try to login using azure (microsoft) getting "Set up your device to get access". But, after click on continue and go to google play, got the error after some time. click back, got the AADSTS90014 error. why?

Answer 1

Hi Muhammad,

When someone is facing the "Set up your device to get access" error along with AADSTS90014, it typically indicates that the user is encountering a device compliance or device registration issue when trying to authenticate via Entra ID. The AADSTS90014 error, specifically, relates to an issue with authentication due to a missing or invalid client secret or certificate (and it well could be the missing compliance requirements), and the "Set up your device to get access" message suggests that there are device requirements (such as being Azure AD-joined or Intune compliant) that the user hasn't met.

If you have Conditional Access policies in place that require devices to be Azure AD-joined or compliant (via Intune) and are trying to access Google services, the AADSTS90014 error may appear if the device doesn't meet those conditions.

I would suggest the following:

1. Verify Conditional Access policies that might require device compliance.
2. Ensure the device is Azure AD-joined or registered.
3. Check Intune compliance if your organization uses Intune for device management.
4. Update the client secret or certificate if expired.
5. Ensure Multi-Factor Authentication (MFA) is configured if needed.
6. Reboot or reset the device registration if needed.
7. Inspect the user's profile and permissions to ensure they have the correct setup.

Good luck. Cheers

Answer 2

Hello @Muhammad 'izzat Mohamad,

Thank you for posting your query on Microsoft Q&A.

Based on your description, I understand that when attempting to log in to your developed application using a Microsoft Entra ID user on an Android device, you are encountering an error stating: "Set up your device to get access." Please refer to the attached screenshot for clarity.

This error typically occurs when your organization has a Conditional Access (CA) policy that requires a compliant device. To identify such a policy, log in to the Azure Portal and navigate to: Microsoft Entra ID → Security → Conditional Access → Policies. Here, review the list of policies that enforce a requirement for a compliant device. Please refer to the attached screenshot for better understanding.

According to the CA policy, the application can only be accessed if the authentication is performed on a compliant device. If the device you are using is not enrolled with Microsoft Entra ID, encountering this error is expected behavior.

To resolve this issue, you have two options:

1. Enroll your device with Microsoft Entra ID using Microsoft Intune.
2. Exclude your developed application from the CA policy to bypass the compliant device requirement.

You can follow the Microsoft documentation below to enroll your device with Entra ID using Microsoft Intune: Enroll Android device with Microsoft Intune.

For more details about the error message, you can refer the below documents.

https://www.reddit.com/r/Intune/comments/122egro/android_enrolled_device_set_up_your_device_to_get/

https://www.anoopcnair.com/enroll-devic-intune-conditional-access-policies/

I hope this information is helpful. Please feel free to reach out if you have any further questions.

If the answer is helpful, please click "Accept Answer" and kindly upvote it. If you have extra questions about this answer, please click "Comment".

Thanks,
Raja Pothuraju.