This article provides a solution for the following error that occurs when an application attempts to connect to Microsoft Azure Active Directory (Azure AD) from Auth0:

AADSTS7000218: The request body must contain the following parameter: 'client_assertion' or 'client_secret'

• Microsoft Azure Active Directory

• Auth0

This error occurs because the Client Secret configured in the Auth0 connection for Azure AD is missing, expired, or invalid.

To resolve this issue, generate a new client secret in the Azure portal and update the connection settings in Auth0.

1. In the Azure Portal, navigate to the App Registration for the application that corresponds to the Auth0 connection.

2. Go to Manage > Certificates & secrets.

3. Select + New client secret, add a description, and set an expiration date.

4. Copy the new secret's Value.

   • NOTE: The secret value cannot be viewed again after leaving the page.

5. In the Auth0 Dashboard, navigate to Authentication > Enterprise > Microsoft Azure AD.

6. Select the connection that requires troubleshooting.

7. Paste the new secret Value from the Azure Portal into the Client Secret field.

8. Select Save.

After updating the secret, the connection should work as expected.