Forum Discussion
Azure Enterprise Apps - permissions
Trying to set up SSO with Box.com via application listed in Azure AD Application Gallery.
Followed online instructions https://docs.microsoft.com/en-us/azure/active-directory/active-directory-saas-box-tutorial on both the old AAD portal and within new portal (which is very different).
However when testing get an error message.
AADSTS65005 - The client application has requested access to resource '00000002-0000-0000-c000-000000000000'. This request has failed because the client has not specified this resource in its required Resource Access list.
From what I can determine the 'resource' is AAD and I think it is looking for the Box app to have authority to AAD.
Is it an undocumented step to grant permissions via the new azure AD portal, has something failed during setup or am I missing something more fundamental ?
Has anyone encountered similar issues with the application gallery apps ?
- So for anyone interested and after logging a ticket for this, the problem has been diagnosed. Enter https://sso.services.box.net/sp/ACS.saml2 into the Identifier URL and it should spring into life.
3 Replies
- DaniMartMS
Microsoft
Nasos_Kladakis, Adam Fowler, VasilMichev, jcgonzalezmartin, any thoughts on granting permissions via the new azure AD portal?
- So for anyone interested and after logging a ticket for this, the problem has been diagnosed. Enter https://sso.services.box.net/sp/ACS.saml2 into the Identifier URL and it should spring into life.
Some of these services have hard to find Identifier URLs, thanks for sharing the answer.
