Error Details:
- Error Code:
MO_OAUTH_ERROR_00007 - Message:
Error with the AccessTokenEndpoint || Invalid or unreachable authorization/token endpoint
Solution: Configure Microsoft as a Custom OpenID Provider
This error commonly occurs when Azure AD is not set up with the correct token endpoint. To fix this, set up Azure AD as a Custom OpenID Provider in the plugin instead of using the default Microsoft configuration.
Steps to Configure:
- Go to the Configured Providers section in the plugin.
- Add a new provider or edit the existing one.
- Select "Custom OpenID Provider" as the provider type.
- Manually enter the following endpoints:
- Authorization Endpoint
- Access Token Endpoint
- User Info Endpoint
- Logout Endpoint (optional)
- Enter your Client ID, Client Secret, and other required fields.
- Save the configuration and test using the Test Configuration button.
Why Use Custom OpenID?
- Standard Azure AD settings may assume default endpoints.
- Custom OpenID lets you override those assumptions for:
- Non-default tenants
- Custom authorization servers
- Government or B2C environments
- Different domain structures
