Azure AD Logins Failing with Error "AADSTS7000222: The provided client secret keys are expired"

lihua.zhang · August 31, 2023, 9:53pm

Last Updated: Nov 13, 2024

Overview

We suddenly started seeing failed logins for our Azure AD enterprise connection. When inspecting the log entry, you can see that the error description states the following:

AADSTS7000222: The provided client secret keys for app '****************’ are expired. Visit the Azure portal to create new keys for your app: Quickstart: Register an app in the Microsoft identity platform - Microsoft identity platform | Microsoft Learn, or consider using certificate credentials for added security: Bing

Applies To

Azure AD
App Login

Cause

This error indicates that the failure is occurring on the Azure side and that the client secret keys generated within the Azure portal have expired.

Solution

The Microsoft developer forums has a post that outlines some steps you can take to renew the client secret keys and update your application:

AADSTS7000222: The provided client secret keys are expired

Topic		Replies	Views
Rotating Azure AD (AAD) Connection Credentials Knowledge Articles connection , client-secret , waad	1	528	December 1, 2023
Azure AD Logins Fails with Error "failed to obtain access token" Knowledge Articles login , error , access-token , azure , client-secret	1	6442	February 16, 2023
Microsoft Azure AD "Error AADSTS7000215: Invalid client secret provided" Knowledge Articles azure-ad , enterprise-connection , entra-id	1	1806	July 1, 2024
How to handle Enterprise connection client secret expiration? Help connections , saml-enterprise-connection	2	361	May 7, 2024
Email Suddenly Stopped Sending for M365 Email Provider Knowledge Articles email-provider , m365 , expired-keys	1	12	September 5, 2024

Azure AD Logins Failing with Error "AADSTS7000222: The provided client secret keys are expired"

Overview

Applies To

Cause

Solution

Related Topics