none
Adding Azure AD user using provisioning package

    Question

  • I followed the instructions to given here ( Microsoft Link ) create a provisioning package using Configuration Designer.

    But when I apply the provisioning package on the Windows 10 Device, I am getting error as follows in AAD Event log.

    Log Name:      Microsoft-Windows-AAD/Operational
    Source:        Microsoft-Windows-AAD
    Date:          4/10/2017 4:41:54 PM
    Event ID:      1112
    Task Category: AadAadtb Operation
    Level:         Error
    Keywords:      Operational,Error
    User:          SYSTEM
    Computer:      Contoso-5129DM6
    Description:
    Error: 0xCAA20001 The client is not authorized to request an authorization code using this method.
    Exception of type 'class Exception' at aadtb.cpp, line: 94, method: AADTBAcquireTokenInternal::<lambda_4e6ecc266bbbd65603077a6172b3b088>::operator ().
    
    Log: 0xcaa1007b Acquire token failed.
    Logged at aadtb.cpp, line: 121, method: AADTBAcquireTokenInternal.
    
    Request: authority: https://login.microsoftonline.com/5792f414-3b8d-41c0-a018-5c0356835f17, client: b90d5b8f-5503-4153-b545-b31cecfaece2, redirect URI: 
    Event Xml:
    <Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event">
      <System>
        <Provider Name="Microsoft-Windows-AAD" Guid="{4DE9BC9C-B27A-43C9-8994-0915F1A5E24F}" />
        <EventID>1112</EventID>
        <Version>0</Version>
        <Level>2</Level>
        <Task>105</Task>
        <Opcode>0</Opcode>
        <Keywords>0x4000000000000012</Keywords>
        <TimeCreated SystemTime="2017-04-10T07:41:54.137018400Z" />
        <EventRecordID>401</EventRecordID>
        <Correlation ActivityID="{4E4F94C0-0099-0000-FC26-E426C0944F4E}" />
        <Execution ProcessID="9980" ThreadID="9956" />
        <Channel>Microsoft-Windows-AAD/Operational</Channel>
        <Computer>Contoso-5129DM6</Computer>
        <Security UserID="S-1-5-18" />
      </System>
      <EventData>
        <Data Name="Error">3399614465</Data>
        <Data Name="ErrorMessage">The client is not authorized to request an authorization code using this method.</Data>
        <Data Name="AdditionalInformation">Exception of type 'class Exception' at aadtb.cpp, line: 94, method: AADTBAcquireTokenInternal::&lt;lambda_4e6ecc266bbbd65603077a6172b3b088&gt;::operator ().
    
    Log: 0xcaa1007b Acquire token failed.
    Logged at aadtb.cpp, line: 121, method: AADTBAcquireTokenInternal.
    
    Request: authority: https://login.microsoftonline.com/5792f414-3b8d-41c0-a018-5c0356835f17, client: b90d5b8f-5503-4153-b545-b31cecfaece2, redirect URI: </Data>
      </EventData>
    </Event>
    I am not sure what is the issue here.
     
    Tuesday, April 11, 2017 2:06 AM

All replies

  • From the error -

    og: 0xcaa1007b Acquire token failed.

    client is not able to get the Token. 

    as per the document you followed, you need to ensure that you have setup Azure AD as describe here

    https://docs.microsoft.com/en-us/azure/active-directory/active-directory-azureadjoin-setup

    Thursday, July 13, 2017 6:23 AM