Hi @cyrilchapon, @j1315b, @codescribblr
There’s currently a bug that does not let you TRY the passwordless connection for Regular Web Apps if the tenant has the “Enforce client authentication for passwordless connections” field enabled. This is because the call to /passwordless/start that is made from the TRY button dos not include the client secret.
New tenants always have that property enabled, and you can’t turn it off, as it’s a security risk. You should not make calls on behalf of confidential clients without providing a client secret.
It’s not a blocking issue, as the call will work for your own code if you provide the client secret.
The TRY button should work if you try it from a Native Application, which is not a confidential client, so it does not require a client secret.
We’ll be fixing the TRY button in the next few weeks.
Regards,
Andres