You’re offline. This is a read only version of the page.
Hello,
I've come across an issue in my Production Portal (Power Pages) solution. I have configured the authentication for users to use Azure AD (Entra ID). In my Sandbox environment and Portal, this works perfectly for all Tenant users (members and guests). However, I have recently deployed the portal to a Production environment, and only members are able to complete the invitation process. Guest users get the invitation code, register it with their contact profile, and then go through the MFA setup process only to see a message saying Approval required. The Sandbox environment was created a year ago, and the Production environment was created back in August 2023. Does anyone know why Guest users can sign in with Azure AD in the Sandbox version but not the Production version? Is there a setting in Dynamics 365 that I need to change that I forgot? This doesn't seem like an Azure AD (Entra ID) thing. Any assistance would be greatly appreciated!
I've found the solution to my issue, and I hope this will help everyone else. The cause behind this issue is due to the creator of the Portal/Power Pages site. The account I was using to create the Production version did not have enough permissions in Azure/Entra, so it was not prompted to approve access to the Microsoft Graph API. This meant that I needed someone with Global Admin permission to go to Azure AD/Entra ID and follow these steps.
Once the last step has been completed, it should allow guest users in the tenant to use Azure AD as their OpenID connection and authenticator. In the future, I'll be looking to use Google and/or Microsoft as alternative authenticators.
#1
Fubar
62
Super User 2025 Season 2
#2
Lucas001
48
Super User 2025 Season 2
#3
KevinGador
44
Super User 2025 Season 2
Share
Report
All responses (
Answers (