Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

Azure Active Directory passing empty GUID for tenantId with default template

Tags:

visual-studio

asp.net

azure-active-directory

I've tried this with several MS accounts that have Azure/AAD accounts in place and have attempted using both Visual Studio 2015 as well as 2017 and am getting the exact same bug/error.

Using the default ASP.NET MVC template with AAD integration out of the box (no code changes at all). The App is registered in my AAD account, and I see the tenantId and other GUIDs are in the Web.Config as they should be. I also traced the call stack as far as I could and the tenantId is initialized properly yet I still get this error:

Requested tenant identifier '00000000-0000-0000-0000-000000000000' is not valid. Tenant identifiers may not be an empty GUID.

This happens after the permissions acceptance screen.

Here is a screenshot as well:

enter image description here

As requested, here is the Web.Config:

enter image description here

like image 905
INNVTV Avatar asked Oct 30 '22 09:10

INNVTV

1 Answers

So the resolution was very simple. But this is not documented anywhere, not even in Vittorio Bertocci's book on the subject - which leads you to believe that you can log in as the Azure subscription owner after creating the Visual Studio project without any additional setup in Azure.

Since the new portal is in preview the UX is not really all that obvious. Here are the steps to take after creating a new ASP.NET project with Active Directory integration:

  1. You have to log into Azure (in the new portal)

  2. Click on Active Directory.

  3. Go to your "App Registrations"

  4. You will see your new application there. click on it.

  5. Inside of the "Essentials" panel at the top of the app registration blade you will see a link with the header "Managed application in local directory" and the link will have the same name as the blade you are already in (This is the confusing part). Click on that link...

  6. You are now one blade deeper and are able to see how many users this application has. It will likely be 0. - This is the issue!

  7. Click on "Users and Groups" in the menu on the left side and you can start adding users.

Please note that the above steps may change as AAD comes out of preview in the new portal.

like image 87
INNVTV Avatar answered Nov 11 '22 17:11

INNVTV
Sign in to Comment

Related questions

GridView don't Show on GridView_PageIndexChanging
Cancelling a Task started by ASP.NET
ASP.NET MVC 5 applications really slow to build
Why I can't use HttpContext or HttpCookie? (Asp.Net Core 1.0)
Share Authentication Across Secure and Nonsecure
Reading AuthorizationSection from web.config provides incorrect values
How to enforce FIPS in asp.net code (This implementation is not part of the Windows Platform FIPS validated cryptographic algorithms.)
Web.config URL Rewrites - HTTPS and Non-WWW
How to get from JavaScript to TypeScript in ASP.Net MVC?
How to solve Heap inspection vulnerability for MVC viewmodel?
How best to communicate between two ASP.NET Core server apps? [closed]
Create Database Table from Model in .NET Core
Unable to debug some aspx pages in ASP application
Validate Image type for IFormFile in ASP.Net Core
How to make ASP.NET create authenticated session with Owin OpenId Connect library?
How to query Active Directory B if application server is in Active Directory A
Should I offload work to other threads in ASP.NET?
How can I lock by cache key?
How to use Microsoft OCR Library ( Microsoft.Windows.Ocr ) in an ASP.Net MVC4 Web API Project?
What is the difference between UseHttpsRedirection and UseHsts

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!