My Oracle Support Banner

Fusion-MS Azure AD Federation SSO Fails With Error AADSTS700016 Application with identifier xxxxx was not found in the directory (Doc ID 2739408.1)

Last updated on DECEMBER 22, 2020

Applies to:

Oracle Fusion General Ledger Cloud Service - Version 11.13.20.10.0 and later
Information in this document applies to any platform.

Symptoms

Problem Statement
When Federation SSO test between Oracle ERP Cloud and Azure Active Directory,
below error message shows up.

Error

Sign in

Sorry, but we're having trouble signing you in.

AADSTS700016: Application with identifier 'https://<Customer's SUBDOMAIN>.
login.em2.oraclecloud.com:443/oam/fed' was not found in the directory
'#xxxxx##-#x#x-####-#x##-###xxxx##xx#'. This can happen if the application has
not been installed by the administrator of the tenant or consented to by any user in
the tenant. You may have sent your authentication request to the wrong tenant.

NOTE: It is NOT Oracle error message. AADSTS700016 error message is from Azure IDP side.

Steps to Reproduce

  1. To setup Identifier (Entity ID) and Reply URL (Assertion Consumer Service URL) on Azure Active Directory and downloaded Federation Metadata XML
  2. To create identity provide for single sign-on and import Azure Active Directory Metadata XML
    Oracle ERP Cloud > Tool > Security Console > Single Sign-On
  3. To test for federation SSO
    Oracle ERP Cloud > Tool > Security Console > Single Sign-On > 3rd tab Diagnostic and Activation > Click Test button

Changes

 

Cause

To view full details, sign in with your My Oracle Support account.

Don't have a My Oracle Support account? Click to get started!

In this Document
Symptoms
Changes
Cause
Solution


My Oracle Support provides customers with access to over a million knowledge articles and a vibrant support community of peers and Oracle experts.