This document shows some error codes, what they mean and what can be done to resolve the issues.
AADSTS7000218
AADSTS7000218: The request body must contain the following parameter:
‘client_assertion’ or ‘client_secret’.
What it means:
The Azure application is expecting a different request from Evoko Home than what it received.
Example cases:
- Azure application was not created
- Used an invalid Azure Application (client) ID in Evoko Home
- Allow public client flows set to
No
.
How to fix:
Refer to the Register oAuth with EWS for Office 365 and Evoko Home support article and make sure the application was created properly. Pay extra attention to step 4 in the Register App for use with oAuth in EWS section. Make sure the Application (client) ID used in Evoko Home is correct.
More information: Azure Active Directory Developer Support Team explains the security implication of changing the default type from public to confidential
AADSTS650057
AADSTS650057: Invalid resource. The client has requested access
to a resource which is not listed in the requested permissions
in the client's application registration.
What it means:
The client has requested access to a resource which is not listed in the requested permissions
in the client's application registration.
How to fix:
- Go to App Registrations and make sure that the
EWS.AccessAsUser:All
API permission has been granted. - In the Enterprise app, check API Permissions and if needed, grant admin consent.