OAuth Email Account - Authorize Email Account Access failed

Dominik9 · ‎08-11-2022

Hi experts

We are currently trying to set up OAuth for the email account. We have done all the steps as described here (Configure SMTP and IMAP email accounts with Microsoft Office365 using OAuth2). Unfortunately, we are not getting anywhere with the "Authorize Email Account Access" step. The following error message appears:

Sorry, but we’re having trouble signing you in.

AADSTS50105: Your administrator has configured the application ServiceNow (<Number>) to block users unless they are specifically granted ('assigned') access to the application. The signed in user <user> is blocked because they are not a direct member of a group with access, nor had access directly assigned by an administrator. Please contact your administrator to assign access to this application.

We have Azure AD SSO enabled. However, the SSO is enabled in another application on Azure and not from the same company.

Is there any work around? Or does somebody have any solution for that?

Best regards

Dominik

Dominik9 · ‎08-15-2022

Hi Tony

Thank you for your response. We could solve the problem by setting the property "Assignment required?" to No in Azure.

Regards

Dominik

View solution in original post

Tony Chatfield1 · ‎08-11-2022

Hi, unfortunately your post does not make your configuration, or issue clear.
Searching the internet the code provided appears to be an Azure authentication issue?

Error AADSTS50105 - The signed in user is not assigned to a role for the application. - Active Direc...

I would start by reviewing the vendor documents and ensuring that Azure is configured correctly,
reading between the lines the ServiceNow user\authentication account or application\scope does not have correct access configured in Azure?

Dominik9 · ‎08-15-2022

Hi Tony

Thank you for your response. We could solve the problem by setting the property "Assignment required?" to No in Azure.

Regards

Dominik