how to change a client secret key of an app with app id "X" but cant find in azure.

Question

Exception : Mailbox Configuration Validation Failed. MsalServiceException occured: A configuration issue is preventing authentication - check the error message from the server for details. You can modify the configuration in the application registration portal. See https://aka.ms/msal-net-invalid-client for details. Original exception: AADSTS7000222: The provided client secret keys for app 'xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx' are expired. Visit the Azure portal to create new keys for your app: https://aka.ms/NewClientSecret, or consider using certificate credentials for added security: https://aka.ms/certCreds. Trace ID: 8513438d-c530-40e8-9810-9e6a150a4b00 Correlation ID: 10b8d657-6a84-4bd9-9e3c-fbd53788f832

Hope. I didn't posted a same question. May I ask how to change "AADSTS7000222: The provided client secret keys for app 'xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx' are expired. "to this specific app that when I search in azure I can't find. Btw, the app is more likely related to email server profile.

Answer 1

Hi, @Zael Leonhart

Thank you for posting your question in the Microsoft Q&A forum.

According to your description, you are getting the error AADSTS7000222: The client secret provided for application 'xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx' has expired, but the application with application ID X cannot be found in Azure. You can try the following steps to find the client ID:

1. Try to get the JWT token by looking in the browser local cache or session.
2. Find iss in the JWT token, which is the client ID.

Then create a new client secret in the Azure portal by following the steps below:

1. Go to the search bar at the top and look for "app registration". As shown in the screenshot:
2. On the "App registrations" page based on the client ID, select the app that needs to be updated (there may be an "expired" label). As shown in the screenshot:
3. Go to "Certificates and Secrets". As shown in the screenshot:
4. Click "New client secret".

If you have any questions, please feel free to contact me. If the answer is helpful, please click "Accept Answer" because it can help other members of the Microsoft Q&A community who are experiencing similar problems and are looking for solutions. Thank you.

 

Best,

Jeanne

Answer 2

Hi, @Zael Leonhart

Great to know that the issue has already been resolved and thanks for sharing the solution so that others experiencing the same thing can easily reference this! Since the Microsoft Q&A community has a policy that "The question author cannot accept their own answer. They can only accept answers by others", I'll repost your solution in case you'd like to "Accept" the answer : )   

--------------   

Issue Symptom: 

Received error AADSTS7000222: The client secret provided for application 'xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx' has expired, but the application with application ID X could not be found in Azure.

Resolution: 

Find the client key for the application based on the ID. Since there are two tenants, the first tenant uses the email of the second tenant, and after not finding the key in the first query, try querying in the second tenant. Confirmed that the second tenant's key is the one that needs to be replaced.