This article provides a solution for an error that occurs during login attempts with a Microsoft Azure Active Directory (Azure AD) enterprise connection. When a user attempts to sign in, the following error message appears:

AADSTS7000215: Invalid client secret provided. Ensure the secret being sent in the request is the client secret value, not the client secret ID, for a secret added to app '<>'

• Microsoft Azure AD
• Enterprise Connection
• Error AADSTS7000215

This error occurs because the client secret configured for the Azure AD application is invalid. This can be due to one of the following reasons:

• The Client Secret ID is used instead of the Client Secret Value.

• The Client Secret Value is expired.

• The Client Secret Value contains special characters that are not URL-encoded correctly.

• The configuration in the consuming application contains a stale or incorrect Client Secret Value.  For example, in Azure DevOps or Azure Data Factory, credentials must be updated properly after rotation; stale values may trigger this error.

To resolve this error, verify that the correct client secret is configured in the application.

1. Go to the Azure Portal.

2. Navigate to App Registrations and select the target application.

3. Select Certificates & secrets.

4. In the Client secrets section, confirm that the secret has not expired. If it has, create a new client secret.

5. Copy the Value for the active client secret. NOTE: Do not copy the Secret ID.

6. Update the connection configuration in the enterprise application with the new client secret Value.