While setting up the AAD integration, when attempting to access identity, it is not redirecting to the Microsoft Login page to get the token, and it is giving the following error message:

’ IDX20803: Unable to obtain configuration from: ‘https://login.microsoftonline.com/‘tenant’/.well-known/openid-configuration’ | Replacing the ‘tenant’ with our tenant id ’ . How to resolve the error message?

Issue Description: After setting up the AAD integration as in the Azure AD Authentication documentation, when attempting to access identity, it is never redirecting to the Microsoft Login page, and it is giving the following error message:

' IDX20803: Unable to obtain configuration from: 'https://login.microsoftonline.com/'tenant'/.well-known/openid-configuration' | Replacing the 'tenant' with our tenant id ' .

Resolution: If there is a Proxy installed, the user making the connection might be blocked at the proxy level.

The first thing to check is to see if the login URL is accessible from the machine where the Services are installed. Try to access the URL from any browser window. An output like in the following screenshot, should be visible when the URL is accessible:

If this URL works from the browser, indicates that the User that is attempting to connect from Identity application does not have access. The solution for this is to perform the below steps

1. Change the application user from IIS, for all UiPath services deployed there, so the request for the AAD token can go through the proxy:

2. Then add the administrator user for that machine and the password. Make sure to add the domain prior user (ex: .\Administrator)
3. Now repeat the same process for all UiPath Services in IIS (Identity, Webhooks, etc) and all other nodes (if applicable)
4. Then, when accessing Identity, the request for getting the token should go through, and it should redirect to Microsoft Login .