What's in this article
Troubleshooting for Microsoft Active Directory Issues
Troubleshooting Invalid CSRF token error
Troubleshooting Microsoft Active Directory Issues
External contractors for SSO-enabled clients of RedEye need to have an account created for them in the client's Active Directory before they are able to access the client bucket in RedEyeDMS.
Below are a couple of scenarios that a user may encounter if the client uses Microsoft Active Directory and the user's account configuration is not set up properly.
Problem
-
The user is external to RedEye client's organisation
-
The user confirms their email address in RedEye client’s AD is the correct one
-
The user logs in using a tenanted URL
-
The user is then directed to either of these pages:
1. "We're unable to complete your request"
Error message displayed:"AADSTS90072: User account '{EmailHidden}' from identity provider '{A001's email domain}' does not exist in tenant '{Tenant A}' and cannot access the application 'xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx'({App001's name}) in that tenant. The account needs to be added as an external user in the tenant first. Sign out and sign in again with a different Azure Active Directory user account"
2. "Sorry but we're having trouble signing you in"
Solution
Contact the client IT Administrators, as the problem is likely to be related to the contractor account's Active Directory configuration:
-
The existing client AD account for the user needs to be deleted
-
The account type needs to be External Azure AD instead of Microsoft Account type
Troubleshooting Invalid CSRF token error
This error message means that your browser couldn’t create a secure cookie, or couldn’t access that cookie to authorise your login. This can be caused by ad- or script-blocking plugins, but also by the browser itself if it's not allowed to set cookies.
To address this issue, follow these steps.
Add RedEyeDMS site URL to cookies in user’s browser settings:
-
Open Chrome Settings.
-
Scroll to the bottom and click on Advanced.
-
In the Privacy and security section, click on Content Settings.
-
Click on Cookies.
-
Next to Allow, click Add.
-
Copy and paste [*.]redeyedms.com and click Add.
-
Under All cookies and site data, search for 'redeye', and delete all RedEye-related entries.
-
Reload Chrome and log into RedEyeDMS.
Comments
0 comments
Article is closed for comments.