Microsoft Secure Tech Accelerator
Apr 03 2024, 07:00 AM - 11:00 AM (PDT)
Microsoft Tech Community
SOLVED

Generic authorization exception inviting Azure AD gests

Copper Contributor

Recently I have been unable to invite guests to my Azure AD.  This had been working great for over a year but now I get the error "Generic authorization exception" when trying from Powershell or the Azure Portal.  Inviting still works with both methods for those already in the Azure AD (well, the invitee gets the invitation email but not much use since they are already in the Azure AD).

 

AzureADIssue.JPG

3 Replies
best response confirmed by Todd Schultz (Copper Contributor)
Solution

Hi Todd,

 

To my understanding "Generic Authorization error" means you don`t have the permission to invite.

I believe you are the Global Admin.

 

change the User settings option in the Azure AD Portal.

 

 User settings=>External collaboration settings

 

Admins and users in Guest user role can invite.

 

toggle this to yes.

 

https://docs.microsoft.com/en-us/azure/active-directory/users-groups-roles/directory-assign-admin-ro...

 

 

Mark like if it helps you. :) 

 

 

 

 

What you suggested worked so thanks. All I can figure is that Azure must have made a recent change in user invitation authorization because this was working for over a year as it was until maybe last week (i.e., the global administrator didn't need this authorization); I may have missed an Azure change notice or perhaps I mistakenly flipped this switch off somehow.

yes, That should be the reason

1 best response

Accepted Solutions
best response confirmed by Todd Schultz (Copper Contributor)
Solution

Hi Todd,

 

To my understanding "Generic Authorization error" means you don`t have the permission to invite.

I believe you are the Global Admin.

 

change the User settings option in the Azure AD Portal.

 

 User settings=>External collaboration settings

 

Admins and users in Guest user role can invite.

 

toggle this to yes.

 

https://docs.microsoft.com/en-us/azure/active-directory/users-groups-roles/directory-assign-admin-ro...

 

 

Mark like if it helps you. :) 

 

 

 

 

View solution in original post