web
You’re offline. This is a read only version of the page.
close
Skip to main content

Notifications

Announcements

No record found.

News and Announcements icon
Community site session details

Community site session details

Session Id :
Dynamics 365 Community / Forums / Supply chain | Supply Chain Management, Commerce / DA1017 - The audience ...
Supply chain | Supply Chain Management, Commerce
Suggested Answer

DA1017 - The audience validation failed. Application session ID 64758111-7d64-ca12-c66b-98fa5a3215a1 After you have resolved the issue, press Retry.

(0) ShareShare
ReportReport
Posted on by Chi-chi 10
MPOS activation
I have the same question (0)
  • Suggested answer
    EeWee Profile Picture
    EeWee on at

    Hi Chi-chi,

    Try to check your Identity Providers in Retail > HQ setup > Retail Shared Parameters by select the sts.windows.net/<guid>.

    In the Relying Party Fast Tab section, you can to check if you have input a valid AppID to it. If not, insert a correct value and run the 1110 job to push the data down to the store and try to activate your MPOS again.

    If the issue still persists, please open a new support incident to report it and we will investigate it further for you.      


  • SergeyP Profile Picture
    SergeyP 2,928 on at

    Please look into Retail Server's log, it will contain a warning with very detailed description on why exactly this fails and how to fix that.

  • mariya11 Profile Picture
    mariya11 55 on at

    i face same issue file activating MPOS with customization. this is one warning i have in event viewer :

    1.  AzureActiveDirectoryUserAuthenticationProvider.acquireTokenWithParam skipped accessing current user's information because corresponding data structure was not initialized.

    2. DeviceAuthenticationProvider.acquireToken did not find a device token in the application stroage.

    3. Server response status code is '401'.

    4. Unauthorized response with error: The audience validation failed.. ErrorResourceId: Microsoft_Dynamics_Commerce_Runtime_InvalidAudience with Correlation Id:

    5. The Retail Server Request with request id '-------------' and request url '--------------/Commerce/ActivateDevice?api-version=7.3' failed.  Error: The audience validation failed., Status code 401.

    6.Chained request execution failed.

    7.Device Activation failed. Errors=[{"errorCode":"Microsoft_Dynamics_Commerce_Runtime_InvalidAudience","message":"The audience validation failed. Contact your system administrator to set up identity providers properly in retail headquarters.\r\n- If you are using Personnel ID and Password logon, make sure relying parties are correctly configured.\r\n- If you are using Azure AD logon, make sure both relying parties and server resource ids are correctly configured."}];

    (Made sure AADClientId and AADRetailServerResourceId  in DllHost.exe file is same as in the HQ parameter relying party and server  resource id. )

    8. The device activation operation failed.

  • SergeyP Profile Picture
    SergeyP 2,928 on at

    Based on the information you provided I can see you looked into MPOS log, but you need to look into Retail Server log to find out exact reason for the misconfiguration.

  • mariya11 Profile Picture
    mariya11 55 on at

    Hi

    Thank you for the reply.

    these are the logs found in retail server.

     pastedimage1661157844382v1.png

    i have an app registration with this application id in azure portal, i am not sure is there any step i am missing

    log3.png

    log2.png

  • SergeyP Profile Picture
    SergeyP 2,928 on at

    The warning seen in the very first screenshot, the one saying about Relying Party, describes the reason of the error you are seeing in MPOS, to address it you need to setup HQ with Identity related information so Retail Server would accept the incoming security token, please see more details in Enable newly created AAD applications on AX side

  • mariya11 Profile Picture
    mariya11 55 on at

    Hi Sergey,

    we have done this setup and confirmed it by reviewing.  we have create a new relying party with new customized MPOS application(client) id and given the redirect URI in server Resource Id.

  • SergeyP Profile Picture
    SergeyP 2,928 on at

    The warning about failed attempt validating the token lists relying parties registered for your issuer, do you see there in the log the values you provided in HQ? Do you also see the issuer value? Can you closely compare the incoming values seen in the log with those actually present in the DB and printed in the log?

    I assume you executed the job 1110 and made sure it completed successfully. You can confirm whether the changes you made in HQ were really synced to your channel DB by analyzing the tables:

    ax.RETAILIDENTITYPROVIDER

    ax.RETAILRELYINGPARTY

    ax.RETAILSERVERRESOURCE

  • SnehaS Profile Picture
    SnehaS on at

    I'm also getting the same issue.

    How did you fix this?

Under review

Thank you for your reply! To ensure a great experience for everyone, your content is awaiting approval by our Community Managers. Please check back later.

Helpful resources

Quick Links

Responsible AI policies

As AI tools become more common, we’re introducing a Responsible AI Use…

Neeraj Kumar – Community Spotlight

We are honored to recognize Neeraj Kumar as our Community Spotlight honoree for…

Congratulations to the November Top 10 Community Leaders!

These are the community rock stars!

Leaderboard > Supply chain | Supply Chain Management, Commerce

#1
Siv Sagar Profile Picture

Siv Sagar 283 Super User 2025 Season 2

#2
Laurens vd Tang Profile Picture

Laurens vd Tang 196 Super User 2025 Season 2

#3
André Arnaud de Calavon Profile Picture

André Arnaud de Cal... 139 Super User 2025 Season 2

Last 30 days Overall leaderboard

Featured topics

Product updates

Dynamics 365 release plans