I've signed to Microsoft with a normal account (email address removed for privacy reasons), I don't have 365 or any subscription to Microsoft, it's a standard account used to, also, some Azure services.

I've created the app, as said here: https://learn.microsoft.com/en-us/azure/active-directory/develop/quickstart-register-app

It's working as a charm ... but just with personal Microsoft accounts. So, any "professional" or "company" account in Microsoft can't login.

I read about that: https://learn.microsoft.com/en-us/troubleshoot/azure/active-directory/error-code-aadsts50020-user-ac...

And I have the manifest.json correctly ... I have the

"signInAudience": "AzureADandPersonalMicrosoftAccount", and I'm using the /common point (also I tried my tenant endpoint)

But i wonder if I need to register in the Microsoft Partner Program, in order to get the "blue ticker" as a authenticated company.

The problem is about tenants, azure's directory and all stuff, but sincerely, it's a mess and I don't know what to do.

What kind of accounts can create an app to allow users (ANY user with ANY microsoft account) to login in your app with oAuth 2.0 ?

Is it necessary to be a Microsoft Partner ?

Is it necessary to create the app with an account having a paid subscription ?