Azure CMG Client App Sign-In Failures RRS feed

  • Question

  • I have the CMG Client App (ConfigManNative) setup in Azure with default settings after installing the CMG from Config Mgr console and see thousands of sign-in errors as a result of conditional access rules put in place to protect other cloud apps in our tenant. I am unable to find a way to exclude the ConfigManNative from these CA policies. Does anyone have a workaround or documentation on the role/configuration of the client app that will lead to eliminate the below sign-in errors?  


    Name: ConfigManNative

    Homepage URL: <blank>

    Logo: CO

    Application ID: xxx

    Object ID: xxx

    User Assignment Required: No

    Visible to users?: No


    53003 -
    Access has been blocked by Conditional Access policies. The access policy does not allow token issuance.

    50158 -
    External security challenge not satisfied. User will be redirected to another page or authentication provider to satisfy additional authentication challenges.

    50076 -
    Due to a configuration change made by your administrator, or because you moved to a new location, you must use multi-factor authentication to access '{resource}'.

    Please let me know if anyone has any ideas or thoughts.

    Thank you!

    Wednesday, June 10, 2020 7:19 PM

All replies