API APP上的身份验证 - 错误:AADSTS500011(Authentication on API APP - Error: AADSTS500011)
Hello All,
I have authenticated API APP using Azure Active Directory. For this, I did below steps.
1) Create App registration for API APP.
2) Get Client ID and Client Secret from App registration.
3) In API APP, On the Authorization/Authentication, Select Loing with Azure Active Directory, and give Advanced authentication.
While I am testing with postman getting an error(Please refer attached image).
Please advice me on it. Thank you.
解决方案
Have you registered Postman with Azure AD as an client app as well for testing your API as Postman simulates a web app to obtain tokens from Azure AD tenant. Please register Postman using reply URL ashttps://getpostman.com/postman . You also need to add your Web API in "API access" while registering your postman application. Please make sure that you select all the scopes are selected and you "Grant Permissions" after you are done.
While requesting bearer token from Postman you need to make sure that you provide the correct information in the "Get New Access Token" dialog -
Grant Type = Implicit
Client Id = Postman's app Application Id
Callback URL should be - https://getpostman.com/postman
scope = https://{tenant domain name}/{api}/user_impersonation openid offline_access
Client Authentication Send client credentials in body
Hello All,
我使用Azure Active Directory验证了API APP。为此,我做了以下步骤。
1)为API APP创建应用注册。
2)从应用注册中获取客户端ID和客户端密钥。
3)在API APP中,在授权/身份验证上,选择Loing with Azure Active Directory,并提供高级身份验证。
我是测试邮差得到错误(请参阅附图)。
请告诉我。谢谢。
解决方案
您是否已将Postman注册为Azure AD作为客户端应用程序以及测试您的API,因为Postman模拟了一个Web应用程序以从Azure AD租户获取令牌。  请使用回复URL注册Postman作为
https://getpostman.com/postman 。 您还需要在"API访问"中添加Web API。在注册邮递员申请时。请确保选择所有选定的范围,然后"授予权限"。完成后
。在向Postman请求持有人令牌时,您需要确保在"获取新访问令牌"中提供正确的信息。对话框 -
授权类型=隐式
客户Id =邮递员的应用程序申请ID
回调网址应为 - https://getpostman.com/postman
scope = https:// {租户域名} / {api} / user_impersonation openid offline_access
客户端身份验证 发送客户端凭据正文