I am using Plumsail Actions to Grant access to a subsite
I get this error "AADSTS90023: Invalid STS request." and the following is the error on the Action.
Please let me know how can I solve that, I need that ASAP.
Thank you very much for your time and support.
That seems a weird solution.
I should check with our IT.
For a big company like ours, some changes like this might not be possible and this is not good for Plumsail.
I keep you updated.
Just to clarify, the requirement to include in the password only numbers and letters will guarantee that there is no character which breaks the authorization process. This issue can occur with any custom code referring to Microsoft services and doesn't bound exactly with our product. If the suggested steps solved the issue, we will be able to localize it. So it doesn't mean that you have to keep such an account password always. It is an investigation step.
Thank you for explaining that,
I tried your solution and our IT created a password something like this: [h7g4qUv]k<hBnS and created a new API key.
I created a simple Flow only with Plumsail action.
I tested that but it gave the same error.
Please let me know if you have any other suggestions.
Hello! Could you confirm that when generating the new API key, you used your login in format user@tenant.onmicrosoft.com? Also, please specify whether the MFA was enabled and you used an app password. I will turn to developers with the provided information.
I did not have access to do that myself.
But I sent your suggestion as my request for the update of the account.
I will reach out to them to confirm that.
I checked with our IT and they confirmed that the login format that you mentioned was used and MFA is not enabled for the account. I did not get what you mean about App password, but I think it is out of the question when we don't use MFA, am I right?
Please keep me updated on this, we have this case open for a while.
Could you test the credentials used for creating the API key and login to the site using them? The described issue can also occur when there is an error in the used login or password.
Sorry, our IT administrators are not fast enough.
A simpler password was created and the same login as you said was used and the Key generated.
Now there's a new error: AADSTS50034: The user account {EmailHidden} does not exist in the teckresources.onmicrosoft.com directory. To sign into this application, the account must be added to the directory.
I checked with our IT and the account is visible.
Any suggestion,
Hello! Yes, such an error occurred recently for some users. Please check the e-mail of the account that was used for creating an API key. Most likely, it will look like user@tenant.com. In this case (sorry for asking you this so many times), recreate the API key using this e-mail in the shortened form and the same password. Edit the existing connection. It should solve the issue (at least it solved for some other users).
I got another error.
It seems we should find another solution for this other than Plumsail.
Any suggestion?
Thank you,
Faramarz
Request to Azure Resource Manager failed with error: '{"error":{"code":"InvokerConnectionOverrideFailed","message":"Could not find any valid connection for connection reference name 'shared_plumsailsp_1' in APIM tokens header."}}'.
Ensure that you used the proper API key in your Plumsail Actions connection.
Create a new primitive flow with Actions (any action) and choose the proper connection.
Test this flow manually.
If it works, get back to the initial flow and test it too. Ensure that you selected a proper connection before running it.
If it fails, try to recreate the flow from scratch. Test it in the initial primitive state to ensure that the connection works and then continue configuring the flow.
No worries,
You were very responsive and tried to help.
The problem is now I feel a bit disappointed of Plumsail.
Especially now, I have problem Document actions which I have used a lot.
I put another topic on this in the community.