How can the error "AADSTS7000218: The request body should have 'client_assertion' or 'client_secret' parameter" in the Get-MsalToken be resolved?

answered 2022-05-22 19:00:00 +0000

bukephalos
21 ●4 ●3

The error "AADSTS7000218: The request body should have 'clientassertion' or 'clientsecret' parameter" occurs when the Microsoft Authentication Library (MSAL) client application is missing the required client secret or client assertion.

To resolve this error, follow these steps:

Ensure that the client application has been registered in Azure Active Directory (AD).
Generate a client secret or client assertion for the application.
Pass the client secret or client assertion to the Get-MsalToken cmdlet as a parameter.
Verify that the client ID, tenant ID, and scope parameters are correct.

Example command:

$clientId = "<your-client-id>"
$clientSecret = "<your-client-secret>"

Connect-MsalService -ClientId $clientId -ClientSecret $clientSecret

$token = Get-MsalToken -TenantId "<your-tenant-id>" -Scope "https://graph.microsoft.com/.default"

Note: Replace the placeholders in the command with your actual values.

edit flag offensive delete link

add a comment

Your Answer

Please start posting anonymously - your entry will be published after you log in or create a new account. This space is reserved only for answers. If you would like to engage in a discussion, please instead post a comment under the question or an answer that you would like to discuss

Add Answer

How can the error "AADSTS7000218: The request body should have 'client_assertion' or 'client_secret' parameter" in the Get-MsalToken be resolved?

1 Answer

Your Answer

Question Tools

Stats

Related questions

How can the error "AADSTS7000218: The request body should have 'client_assertion' or 'client_secret' parameter" in the Get-MsalToken be resolved? edit

1 Answer