Reputation: 11
We are trying to integrate the Azure Active Directory (using Graph API) with java web-based custom LDAP application to sync groups. As a first step, we can authenticate and get tokens, but facing error
Authorization_IdentityNotFound, the identity of the calling application could not be established, Request ID: cec7a25c-0af6-4c6a-99f714d80a01ad85
while trying to fetch the groups using graph API URL from Azure AD site.
Steps done for Azure AD Configuration:
https://graph.windows.net
(This link used in application)https://login.microsoftonline.com/common/
(This link used in application)What other configuration/permission level required to fetch Group List?
Upvotes: 0
Views: 961
Reputation: 9549
According to the error in your question, I guess you should be using the client credential flow, which generally uses application permissions. For this error, you only need to change the https://login.microsoftonline.com/common/
Replace common/
with tenant Id
or domain name
.
Upvotes: 0