25,155 questions
How to fix 'isn't in our system. Make sure you typed it correctly.'
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(128, 8%, 22%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EA%3C/text%3E%3C/svg%3E)
Anonymous
I am trying to develop feature that will allows users to sign in with Microsoft. I read many articles and docs but almost all of them describe how to do that only for tenant-specific accounts. I don't want to add user accounts manually to my tenant app.
Here is my config:
spring:
security:
oauth2:
client:
registration:
microsoft:
authorization-grant-type: authorization_code
redirect-uri: http://localhost:8084/api/auth/azure/login/oauth2/code/microsoft
provider: microsoft
client-id: ****
client-secret: ****
scope:
- openid
- email
- profile
provider:
microsoft:
authorization-uri: https://login.microsoftonline.com/common/oauth2/v2.0/authorize
token-uri: https://login.microsoftonline.com/common/oauth2/v2.0/token
user-info-uri: https://graph.microsoft.com/oidc/userinfo
user-name-attribute: sub
jwk-set-uri: https://login.microsoftonline.com/common/discovery/v2.0/keys
As i understand authorization-uri must contain 'common' part (not tenant-id). Also Azure Entra Id is configured to allow any types of account to sign in.
But i still can't login with external accounts.
Microsoft Security | Microsoft Entra | Microsoft Entra ID
{count} votes
-
Anonymous
2025-02-28T17:12:28.6466667+00:00 This error occurs only in Trial external tenant. In Default Directory everithing is fine.
-
Anonymous
2025-02-28T17:12:42.9433333+00:00 This error occurs only in Trial external tenant. In Default Directory everithing is fine.
-
Raja Pothuraju 23,800 Reputation points Microsoft External Staff Moderator2025-03-05T00:00:31.87+00:00 Hello @Dmitry,
Thank you for posting your query on Microsoft Q&A.
Based on your description, you have configured an application in your External ID tenant (CIAM) with the supported account type set to "Work or school or personal Microsoft accounts."
However, when logging in with a Microsoft personal account, the user lookup is not occurring within the tenant. To investigate this issue further, I would like to connect with you offline. Please share your contact details via a private message.
-
Raja Pothuraju 23,800 Reputation points Microsoft External Staff Moderator
2025-03-06T21:06:01.2366667+00:00 Hello @Dmitry,
I just wanted to check if you'd be interested in taking this offline via a remote session to better understand the scenario. Please share your contact details via a private message.
Sign in to comment
Sign in to answer