Resolving Microsoft AADSTS50105 Error

If you see the error "Your Administrator has configured the application to block users unless they are specifically granted ('assigned') access" when accessing Digital Theatre+, it means there is a permissions issue with Microsoft Entra SSO Setup

Explanation

This error is generated by Microsoft and indicates that your administrator has configured the application to block users unless they have been specifically granted access. The signed-in user is blocked because they are not a direct member of a group with access or do not have access directly assigned by an administrator.

Microsoft Error

What to Do

This issue cannot be resolved by Digital Theatre+ and must be addressed by your school's IT team.

Information for Your IT Team

  • Error Message:

    • "AADSTS50105: Your Administrator has configured the application to block users unless they are specifically granted ('assigned') access to the application. The signed-in user is blocked because they are not a direct member of a group with access nor had access directly assigned by an administrator. Please contact your administrator to assign access to the application."
  • Suggested Actions:

    1. Check User Permissions:
      • Ensure that the user has been assigned access to the Digital Theatre+ application in Azure/Entra.
    2. Group Membership:
      • Verify that the user is a member of a group that has access to Digital Theatre+.
    3. Direct Access Assignment:
      • If group membership is not feasible, assign access to the user directly within the Azure/Entra portal.

Steps for IT Team to Grant Access

  1. Navigate to Azure Active Directory:

    • Go to the Azure portal and select Azure Active Directory.
  2. Access Enterprise Applications:

    • Select Enterprise applications and then find Digital Theatre+ in the list.
  3. Assign Users and Groups:

    • Under Manage, select Users and groups.
    • Click Add user/group, then select the users or groups that need access.
  4. Review and Save:

    • Confirm the users or groups added and save the changes.

Additional Help

If you or your IT team need further assistance, you can refer to Microsoft's documentation on managing access to applications or contact Microsoft support directly.