Skip to content
DevOps AI ToolKit
Newsletter
All troubleshooting hubs Troubleshooting hub

Microsoft Entra ID (Azure AD) Sign-in Errors

The AADSTS error codes that block sign-in and app auth across Microsoft Entra ID (Azure AD), Teams, and Azure apps — conditional-access blocks, missing admin consent, expired client secrets, redirect-URI mismatches. Each guide decodes the exact AADSTS number and the admin fix. Find your code below, or describe the failure to the assistant.

Fix your error now

Paste the error or logs and let the Incident Assistant diagnose it, or run a guided triage prompt with AI — no copy-paste.

Diagnose with the Incident Assistant →

Every guide in this cluster

10 guides

Azure with AI AI prompts

Copy-paste, production-safe prompts for this stack.

More Azure with AI guides

Every Azure with AI prompt and troubleshooting guide.

Frequently asked questions

What does an AADSTS error code tell me?
The AADSTS number pinpoints the failure stage. AADSTS50105 is a conditional-access / assignment block, AADSTS65001 is missing user or admin consent, AADSTS7000215 is an invalid client secret, AADSTS90002 is a tenant-not-found. Look up your exact code in the guides below for the specific fix.
Why does the same AADSTS code appear in both Teams and Azure guides?
Teams, the Azure portal, and custom apps all authenticate through the same Entra ID (Azure AD) token service, so they surface identical AADSTS codes. The root cause and the admin-center fix are the same regardless of which app reported it — these hubs group them so you can jump straight to the code.
My client secret "just expired" — where do I fix it?
In the Entra admin center under App registrations → your app → Certificates & secrets, create a new client secret, update it in the app configuration, and remove the expired one. See AADSTS7000215.