hagen013•5d ago

Azure Active Directory IDP / Invalid grant_type MSIS 9612

I’m currently working on integrating Zitadel with a self-hosted Azure Active Directory using the Generic OIDC option. At the redirect stage — when the authorization_code is sent back to Zitadel — I’m getting the following error (see attached screenshot): invalid grant_type MSIS9612. I don’t have access to the Active Directory admin panel. The client_id and client_secret are correct, and the redirect_uri in the browser matches the configuration in the IDP. What recommendations can we give the clients regarding their side of the configuration? Am I correct in assuming that Zitadel receives an invalid response from AD when exchanging the authorization_code during the OIDC handshake?