Howdy, Stranger!
Categories
- All Categories
- 73 General
- 73 Announcements
- 66.6K Microsoft Dynamics NAV
- 18.7K NAV Three Tier
- 38.4K NAV/Navision Classic Client
- 3.6K Navision Attain
- 2.4K Navision Financials
- 115 Navision DOS
- 854 Navision e-Commerce
- 1K NAV Tips & Tricks
- 772 NAV Dutch speaking only
- 615 NAV Courses, Exams & Certification
- 2K Microsoft Dynamics-Other
- 1.5K Dynamics AX
- 304 Dynamics CRM
- 109 Dynamics GP
- 10 Dynamics SL
- 1.5K Other
- 993 SQL General
- 384 SQL Performance
- 34 SQL Tips & Tricks
- 34 Design Patterns (General & Best Practices)
- Architectural Patterns
- 10 Design Patterns
- 5 Implementation Patterns
- 53 3rd Party Products, Services & Events
- 1.7K General
- 1.1K General Chat
- 1.6K Website
- 79 Testing
- 1.2K Download section
- 23 How Tos section
- 260 Feedback
- 12 NAV TechDays 2013 Sessions
- 13 NAV TechDays 2012 Sessions
User log in error: NAVCancelCredentialPromptException
Cmadziwa
Member Posts: 5
Hi,
I have an database upgraded from BC15 to BC20.6 onprem using AAD for authentication. At times users are not able to log in and it appears the browser is processing something on the log in screen. Users can only log in after clearing the cookies for the BC website. In the event log I am seeing the following error:
I have an database upgraded from BC15 to BC20.6 onprem using AAD for authentication. At times users are not able to log in and it appears the browser is processing something on the log in screen. Users can only log in after clearing the cookies for the BC website. In the event log I am seeing the following error:
0
Best Answer
-
Cmadziwa
Member Posts: 5
I found a solution for this...
https://learn.microsoft.com/en-us/dynamics365/business-central/dev-itpro/administration/authenticating-users-with-azure-ad-overview
Enable UseLegacyAcsAuthentication
1
Answers
I have seen a lot of these because Azure security token lifetime is not set.
There was an error regarding a token expiration before this... I set the ExtendedSecurityTokenLifetime setting on the server instance to 8hours and it went away.
Now I have the above error. The only thing I do see a warning though before this issue starts. How did you solve this issue?
https://learn.microsoft.com/en-us/dynamics365/business-central/dev-itpro/administration/configure-server-instance
"Disable token signing certificate validation when configuring Azure Active Directory authentication with single sign-on."
This is disabled -
And the guys responsible for setting up the azure ad have confirmed they are using a default policy with a token lifetime variable between 60-90mins
I. A user authenticates on the server:
2. The system tries to get AAD authentication:
3. I get a configuration warning:
Steps 1,2&3 are repeated multiple times before there is a string of errors:
https://learn.microsoft.com/en-us/dynamics365/business-central/dev-itpro/administration/authenticating-users-with-azure-ad-overview
Enable UseLegacyAcsAuthentication