Look for 6400 Event ID’s in the Operations Manager log on the management server if you do not have the correct information
Event ID 6400 in Operations Manager log helps show what’s missing with Azure AD error events
Follow steps outlined in the ‘Set up Azure Service Principal’ blog here
Sample 6400 event
Message: Microsoft.IdentityModel.Clients.ActiveDirectory.AdalServiceException: AADSTS90002: Tenant XXXXXXXXX not found.
This may happen if there are no active subscriptions for the tenant. Check with your subscription administrator.
Trace ID: 89abf27f-4884-4191-b577-de2fce100600
Correlation ID: c8a2470e-2383-4325-b91f-86b5e20ade57
Timestamp: 2018-08-06 20:34:49Z —> System.Net.WebException: The remote server returned an error: (400) Bad Request.
at System.Net.HttpWebRequest.GetResponse()
at Microsoft.IdentityModel.Clients.ActiveDirectory.HttpWebRequestWrapper.<GetResponseSyncOrAsync>d__2.MoveNext()
— End of stack trace from previous location where exception was thrown —
at System.Runtime.ExceptionServices.ExceptionDispatchInfo.Throw()
at System.Runtime.CompilerServices.TaskAwaiter.HandleNonSuccessAndDebuggerNotification(Task task)
at Microsoft.IdentityModel.Clients.ActiveDirectory.HttpHelper.<SendPostRequestAndDeserializeJsonResponseAsync>d__0`1.MoveNext()
— End of inner exception stack trace —
at Microsoft.IdentityModel.Clients.ActiveDirectory.AuthenticationContext.RunAsyncTask[T](Task`1 task)
at Microsoft.SystemCenter.ServiceMap.REST.Credentials.AdCredentials.GetToken()
at Microsoft.SystemCenter.ServiceMap.UI.SubscriptionData.TestConnection()
ErrorCode: invalid_request
StatusCode: 400
Inner Exception
Message: The remote server returned an error: (400) Bad Request.
Response URI: https://login.windows.net/XXXXXXXXX/oauth2/token
Headers:
Pragma: no-cache
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
client-request-id: c8a2470e-2383-4325-b91f-86b5e20ade57
x-ms-request-id: 89abf27f-4884-4191-b577-de2fce100600
x-ms-clitelem: 1,90002,0,,
Cache-Control: no-cache, no-store
Content-Type: application/json; charset=utf-8
Expires: -1
P3P: CP=”DSP CUR OTPi IND OTRi ONL FIN”
Set-Cookie: esctx=AQABAAAAAADXzZ3ifr-GRbDT45zNSEFEzFrPhp_xcoXIlYw2iOqAFXkz7NO-Hm1hJdVAn6298A0ylDD5VvX2VosFiRVxTDzmRz24sbVUbhiTuyHJsmeIkR47y1MU3SafDlFp6xPo91BwZhRqoDPtP6YTBi5D6mHGqy2lkSAEVQtg9D4lsWTmKipm9iLaB2twBZcYR0VkDhIgAA; domain=.login.windows.net; path=/; secure; HttpOnly,x-ms-gateway-slice=004; path=/; secure; HttpOnly,stsservicecookie=ests; path=/; secure; HttpOnly
Server: Microsoft-IIS/10.0
Date: Mon, 06 Aug 2018 20:34:48 GMT
Content-Length: 508