Passer au contenu
En utilisant AWS re:Post, vous acceptez les AWS re:Post Conditions d’utilisation
AWS re:Postre:Post
À propos de re:Post

AppFlow SharePoint OAuth Error: AADSTS50011 with custom Azure AD app despite correct redirect URI

1

I'm trying to integrate Microsoft SharePoint Online with Amazon AppFlow using a custom Azure AD app registration — not the AWS-managed client app. In the AppFlow connection UI:

  • I unchecked "Use AWS managed client app"
  • I entered my client ID, client secret, and tenant ID
  • I'm using the correct regional redirect URI: https://eu-central-1.console.aws.amazon.com/appflow/oauth I have also:
  • Granted Sites.Read.All and other required Graph permissions
  • Granted admin consent in Azure AD
  • Confirmed the app registration is confidential (public client flow disabled)
  • Tried fresh incognito sessions

Yet, I keep getting this error: AADSTS50011: The redirect URI 'https://3rdp.oauth.console.api.aws' does not match the redirect URIs configured for the application

Why is AWS AppFlow still trying to use the AWS-managed redirect URI even though I'm using my own client app with the correct regional URI?

Sujets
Intégration d'applications
Balises
Microsoft SharePointAmazon AppFlow
Langue
English
demandé il y a 4 mois93 vues
2 réponses
0

We’re running into the same problem: and as soon as we add https://3rdp.oauth.console.api.aws to Azure AD’s Redirect URI list—alongside the proper AppFlow URI—Microsoft bounces us straight to the screen below. Enter image description here

répondu il y a 4 mois
  • Wissam
    il y a 4 mois

    Yes first I was redirected to the same page, and after I cleared cash and cookies my problem was solved and I was able to create the connection via the Azure AD app registration.

  • Gabriel Silva Goncalves
    il y a 10 jours

    It is important to verify if multi-session support is enabled. If so, disable the multi-session support feature in the AWS Management Console to enable the 3-leg OAuth process during connection setup.

    https://docs.aws.amazon.com/appflow/latest/userguide/connections.html

0

When setting up a custom Azure AD app registration for use with Amazon AppFlow's SharePoint connector, the redirect URI issue you're experiencing is a common problem.

The error message indicates that AppFlow is attempting to use a different redirect URI than the one you've configured. This happens because when you use your own app registration (instead of the AWS-managed client app), you need to ensure that you've added all the necessary redirect URLs to your Azure AD app registration.

For your custom app registration in Azure AD, you need to add the following redirect URI:

https://eu-central-1.console.aws.amazon.com/appflow/oauth

Make sure this exact URI is added to the list of redirect URIs in your app registration in the Microsoft Azure portal. The format must match precisely, including the region (eu-central-1 in your case).

Additionally, verify that:

  1. You've properly registered your app in the Microsoft Azure portal
  2. The app has the correct permissions (Sites.Read.All as you mentioned)
  3. The client ID and client secret you're using in AppFlow match those from your Azure AD app registration
  4. Your tenant ID is correct

If you've confirmed all these settings are correct and you're still experiencing the issue, you might need to clear your browser cache or try a different browser, as OAuth authentication can sometimes be affected by cached credentials.
Sources
Microsoft SharePoint Online connector for Amazon AppFlow - Amazon AppFlow
OAuthCredentials - AmazonAppFlow

répondu il y a 4 mois
  • Wissam
    il y a 4 mois

    everything is configured correctly

Vous n'êtes pas connecté. Se connecter pour publier une réponse.

Une bonne réponse répond clairement à la question, contient des commentaires constructifs et encourage le développement professionnel de la personne qui pose la question.

Contenus pertinents