Problem:
A tenant admin may receive the error “AADSTS50105: The signed in user ‘{EmailHidden}’ is not assigned to a role for the application…” when clicking on the “Grant Admin Consent” button in Azure AD’s App Registration portal as shown in the screen shot below:
Why is this happening?
This error typically happens when the Enterprise Application portion (or Service Principal) of the registered application has the setting ‘User Assignment Required’ set to Yes
So how do I resolve this issue?
You can follow the steps below to work around this issue:
- Change the ‘User assignment required’ to No and save the change
- Go back to the App Registration portal and perform Granting Admin consent to the application. It should work this time
- Set the ‘User assignment required’ back to Yes again
Thank you! I was really struggling to resolve error AADSTS50105. Your suggestion worked perfectly.
having trouble getting back in
What error message are you getting?
User assignment required : No.
Back to you (my God). Yes. Again.