Share via

client secret key blocked by tenant-wide policy

Kewaunee Admin 10 Reputation points
2026-02-12T13:08:59.99+00:00

Dear All,

Unable to create a client secret key due to a tenant-wide policy.

( not able to create a client secret key, which was blocked by tenant-wide policy)

Microsoft Security | Microsoft Entra | Microsoft Entra ID

1 answer

Sort by: Most helpful
Most helpful Newest Oldest
  1. Q&A Assist
    2026-02-12T13:09:08.4266667+00:00
    AI generated content. This question contains an answer created with AI from Q&A Assist. Learn more

    If you are unable to create a client secret key due to a tenant-wide policy, it indicates that the application management policy in your organization is enforcing restrictions on the creation of client secrets. To confirm that the policy is applied, you can check the default application management policy and see if the restrictions are enforced. If this is your first time applying such a policy, the id field should change to a new GUID, indicating the policy has been created.

    To resolve this issue, you may need to review the application management policies set for your tenant. If the policy blocks the creation of client secrets, consider using alternative authentication methods, such as certificate credentials, which can provide added security.

    You can also create a new application and verify if the restrictions are enforced by attempting to create a client secret or symmetric key, which should result in an error if the policy is active.

    0 comments

Your answer

Answers can be marked as 'Accepted' by the question author and 'Recommended' by moderators, which helps users know the answer solved the author's problem.