Skip to main content

Notifications

Announcements

No record found.

News and Announcements icon
Dynamics 365 Community / Forums / Microsoft Dynamics NAV (Archived) / Error : You cannot sig...
Microsoft Dynamics NAV (Archived)

Error : You cannot sign in due to a technical issue.Contact your system administrator

(1) ShareShare
ReportReport
Posted on by CDsilva 4,184

Hi,

I'm configuring SSO for NAV 2018. It prompts me for Office 365 credentials but after entering password it throws error 'You cannot sign in due to Technical issue.Contact your system administrator'

client.JPG

After checking the Event viewer it says:

Server instance: DynamicsNAV110
Tenant ID:
<ii>Type: System.IdentityModel.Tokens.AudienceUriValidationFailedException
Message: <ii>ID1038: The AudienceRestrictionCondition was not valid because the specified Audience is not present in AudienceUris.
Audience: 'http://dynamicsnavwinclient/'</ii>
StackTrace:
at System.IdentityModel.Tokens.Saml2SecurityTokenHandler.ValidateToken(SecurityToken token)
at Microsoft.Dynamics.Nav.Service.NavSaml2SecurityTokenFactory.ValidateToken(Saml2SecurityToken saml2SecurityToken, Saml2SecurityTokenHandler saml2SecurityTokenHandler)
at Microsoft.Dynamics.Nav.Service.NavSaml2SecurityTokenFactory.CreateAndValidateWithAudienceList(String serializedToken, FederationMetadataProvider federationMetadataProvider, AudienceRestriction audienceRestriction, String tokenId)
at Microsoft.Dynamics.Nav.Service.NavSecurityTokenFactory.Create(String response, Func`1 tokenSigningKey, FederationMetadataProvider federationMetadataProvider, String identityProviderAddress, String tokenId, String tokenType, NavTenant tenant)
at Microsoft.Dynamics.Nav.Service.WSFederationValidator.Validate(NavTenant tenant, String userName, String password, String navAppId)
at Microsoft.Dynamics.Nav.Service.ClientServicesUserNamePasswordValidator.ValidateCredentials(String userName, String password, NavTenant tenant, String navAppId)
at Microsoft.Dynamics.Nav.Service.ClientServicesUserNamePasswordValidator.Validate(String userName, String password)
Source: System.IdentityModel
HResult: -2146233087
</ii>

 

What is AudienceUris and how can I solve this?

*This post is locked for comments

  • John Gentile Profile Picture
    John Gentile 10 on at
    RE: Error : You cannot sign in due to a technical issue.Contact your system administrator

    Hello, I know this is an older thread, but what was the solution for trying to get the RTC to run?  I have the same issue that Steven Keen has with the Web Client running inside of the login screen.    I'm running BC 14 on prem CU 20.  

  • Suggested answer
    GaneshKulpe Profile Picture
    GaneshKulpe 10 on at
    RE: Error : You cannot sign in due to a technical issue.Contact your system administrator

    Hi,

    I got same error and fixed with below step

    Set-NavSingleSignOnWithOffice365 -AuthenticationEmail "emailid” -NavServerInstance “instance name” -NavUser “username” -NavWebAddress “serverip:8080/DynamicsNAV110” -NavServerCertificateThumbprint "**********11AE0FEE5A86528" -NavWebServerInstanceName “instancename”

     (Azure and AD)

    Login to your Office 365 Azure AD.

    Create an Azure AD Application . App ID and Reply Url should be like

    Redirect url = serverip:8080/DynamicsNAV110 (https without /)

    Application ID url = serverip:8080/DynamicsNAV110 (http with /)

     

    Step 2 (Setup Files)

    Navsetting.json> Set Credentials to AccessControlService (Can leave this setting )

    Client User Settings > Set Credentials to AccessControlService 

    Client User Settings > ACSUri > Replace (https://login.windows.net/intelegaintech.onmicrosoft.com/wsfed?wa=wsignin1.0%26wtrealm=http://server ip/DynamicsNAV110/)

     

    Step 3 (NAV Instance)

    It is very important to disable "Enable Certification Validation" in your instance. 

    Set Credentials to NavUserPassword

    Go to Azure section in NAV instance administration.

    Set serverip:8080/DynamicsNAV110 as your Azure AD App ID URI

    Replace WS-Federation Login Endpoint with the ACSUri string from your client user settings config file.  (abovelink)

    Restart everything.

    Let me know issue fix or not.

  • Suggested answer
    gert@lynge.org Profile Picture
    gert@lynge.org on at
    RE: Error : You cannot sign in due to a technical issue.Contact your system administrator

    I'm not sure this is the error, but i guess it is worth checking. I also did'nt have time to read the full thread, just part of it, but wanted to share this anyway (forgive me if this is not your problem :-) )...

    This is for the web client only: when you cannot sign in for technical reasons.

    I did'nt see the exact error you saw in the eventviewer, but i discovered this on NAV 2017, so it might be the same issue, but just logging something different to even viewer.

    Anyway - i have a Danish blog describing it here: http://blog.systemconnect.dk/?p=1075

    But in short - and in English - all you need to do is:

    Open IIS

    Open Application Pools

    Select Dynamics NAV 2017 (or your version) Web Client Application Pool

    Open Advanced Settings

    Find Process Model / Load User Profile and make sure it is False (default is True).

    Hope it helps solving your issues....

  • AGera111 Profile Picture
    AGera111 on at
    RE: Error : You cannot sign in due to a technical issue.Contact your system administrator

    I`m on CU4 and its not working with ADFS. same f*cking issue.

  • Community Member Profile Picture
    Community Member Microsoft Employee on at
    RE: Error : You cannot sign in due to a technical issue.Contact your system administrator

    Sergio, I am running into this same problem on NAV 2018 CU2. I tried log into the Azure AD, but can't find the place to make the change. I go to App Registration, but then it asks for Name, Application Type and Sign-on URL. How does that map to your description, or is there somewhere else I should look? Help is appreciated :-)

  • CDsilva Profile Picture
    CDsilva 4,184 on at
    RE: Error : You cannot sign in due to a technical issue.Contact your system administrator

    Hi,

    The issue still persists in NAV 2018 CU 2. I'll work on it and update.

  • keensoft Profile Picture
    keensoft 85 on at
    RE: Error : You cannot sign in due to a technical issue.Contact your system administrator

    Hey Chris, If you resolve this would you care to share your solution - I can only get it to half work :(

  • Suggested answer
    CDsilva Profile Picture
    CDsilva 4,184 on at
    RE: Error : You cannot sign in due to a technical issue.Contact your system administrator

    Hi Sergio,

    I was trying with CU1 of NAV 2018, I'll check with CU 2 and update

  • Sergio Ingravika Profile Picture
    Sergio Ingravika on at
    RE: Error : You cannot sign in due to a technical issue.Contact your system administrator

    Hello Chris,

    Are you working with 2018 first release? I think they might have solved this on CU2. Maybe the cmdlets are working again.

  • CDsilva Profile Picture
    CDsilva 4,184 on at
    RE: Error : You cannot sign in due to a technical issue.Contact your system administrator

    Hi,

    I followed all your steps but I'm getting the below error

    0844.issue.JPG

    any suggestion?

Under review

Thank you for your reply! To ensure a great experience for everyone, your content is awaiting approval by our Community Managers. Please check back later.

Helpful resources

Quick Links

December Spotlight Star - Muhammad Affan

Congratulations to a top community star!

Top 10 leaders for November!

Congratulations to our November super stars!

Tips for Writing Effective Suggested Answers

Best practices for providing successful forum answers ✍️

Leaderboard

#1
André Arnaud de Calavon Profile Picture

André Arnaud de Cal... 291,269 Super User 2024 Season 2

#2
Martin Dráb Profile Picture

Martin Dráb 230,198 Most Valuable Professional

#3
nmaenpaa Profile Picture

nmaenpaa 101,156

Leaderboard

Featured topics

Product updates

Dynamics 365 release plans