Azure Tools Blog articles

Azure Tools Blog articles

https://techcommunity.microsoft.com/t5/azure-tools-blog/bg-p/AzureToolsBlog

Azure Tools Blog articles

Azure Active Directory breaking change impacting Azure CLI and Azure PowerShell

Published

Azure Active Directory breaking change impacting Azure CLI and Azure PowerShell

Context

Starting 10/15/2021, Azure Active directory will require the AppId Uri in single tenant applications to use default scheme or verified domains. If you have not upgraded Azure CLI or Azure PowerShell to the most recent versions, you will receive the following error message when creating a service principal:

 

Values of identifierUris property must use a verified domain of the organization or its subdomain

 

Solution

You must upgrade to the following versions for reach impacted:

  • Azure CLI version 2.25.0 or later
  • Azure PowerShell version 6.0.0 or later

 

You can read more about the impact of this breaking change in each tool:

 

Workaround

We understand that upgrading to a new version of an automation tool is not always straightforward, the workaround consists of the following steps:

  1. If needed, add your custom domain name using Azure Active Directory portal
  2. Create the application with an authorized IdentifierUri
  3. Create the service principal referring to this application

 

 

Continue to website...

More from Azure Tools Blog articles