13,724 questions
Have you ever managed to find out what was the cause of the above error and how to resolve it?
Client assertion is not within its valid time range error while trying to acquire token from Azure client App
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(227.2, 56.00000000000001%, 32%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EVK%3C/text%3E%3C/svg%3E)
Venkat Kambhampati
1
Reputation point
HI ,
I am trying to acquire token for from my Azure client App which has Ms Graph permissions set. I am using HttpClient request for acquiring the token. I am using client assertion and not client secrete. I am able to connect to the App using Connect-MgGraph commandlet from powershell.
But when I am trying to connect from C# application with JWT header and payload configured. I always get "unauthorized" error http response 401.
When I run from Postman app , I always get the same error even with a new self-signed certificate.
"error": "invalid_client",
"error_description": "AADSTS700024: Client assertion is not within its valid time range. Current time: 2022-03-18T11:28:52.5620799Z, expiry time of assertion 2022-03-15T11:56:47.0000000Z. Review the documentation at https://learn.microsoft.com/azure/active-directory/develop/active-directory-certificate-credentials .\r\nTrace ID: 8c1f2091-a4d3-47f3-8af3-d4d843842600\r\nCorrelation ID: e793dddb-745b-4636-8801-e23c3f00c7ff\r\nTimestamp: 2022-03-18 11:28:52Z",
"error_codes": [
700024
],
"timestamp": "2022-03-18 11:28:52Z",
"trace_id": "8c1f2091-a4d3-47f3-8af3-d4d843842600",
"correlation_id": "e793dddb-745b-4636-8801-e23c3f00c7ff",
"error_uri": "https://login.microsoftonline.com/error?code=700024"
}
It always shows expiry time is as "expiry time of assertion 2022-03-15" On march 15th 2022 I was able to get the access token successfully from postman app only, but from c# code I was getting "Unauthorized" error.
Even if I send empty client assertion and client id in postman app still it throws the same error as above. I am not able to come out of this error.
Hope I would get a solution for the problem in this forum.
Thank you,
Venkat K
Microsoft Security | Microsoft Graph
{count} votes
-
Venkat Kambhampati 1 Reputation point
2022-03-18T13:03:46.34+00:00 I don't know why it always shows the same date "2022-03-15T" as the expiry date. The client assertion expiry time has been configured as 24hrs from current time.
excerpt from my c# code for setting teh client assertion expiry time.
DateTime validFrom = DateTime.UtcNow;
int TokenExpiryDurationInMin = 60*24;
var nbf = ConvertToEpochSeconds(validFrom);
var exp = ConvertToEpochSeconds(
validFrom + TimeSpan.FromSeconds(60 * TokenExpiryDurationInMin)); -
Mario Gravel 0 Reputation points2023-10-24T14:14:37.23+00:00 If you look at the time, it is valid, but your timezone is applied to the current time where it shouldn't.
I'm having the same issue. Any fix yet ??
Here is my message
AADSTS700024: Client assertion is not within its valid time range. Current time: 2023-10-24T13:45:15.0366054Z, assertion valid from 2023-10-24T12:40:16.0000000Z, expiry time of assertion 2023-10-24T12:45:16.0000000Z.EDIT: Look at the time of this post ;-) it is way before the "current time" of the message.
Sign in to comment
1 answer
Sort by: Most helpful
-
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(300.8, 24%, 39%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EMA%3C/text%3E%3C/svg%3E)
Moustafa Ashmawy 6 Reputation points2022-08-25T19:05:05.497+00:00 -
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(64, 15%, 16%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ES2%3C/text%3E%3C/svg%3E)
SoheilSekandari-2718 21 Reputation points2024-01-03T20:56:10.19+00:00 That's a good question Moustafa. Also ChatGPT has no solution for this issue.
Sign in to comment -