I created an app in azure and authenticating using AAD ,but when users try to log in they keep getting message admin approval required But no matter how I configure the application in the Azure Portal, I'm always receiving the following message after I've logged in with a normal user but an admin can login without the app showing the error,:

enter image description here

My Enterprise applications | User settings

enter image description here

My API permissions enter image description here

I need my users to just login normally like the admin, what am I doing wrong?


Solution 1: Carl Zhao

This question has been resolved by @juunas comment, post it as an answer to close the question.

If you are using /common or /organizations as the authority in the app, the user will authenticate against their home tenant. It might be what is happening here. Your tenant's settings will not apply there, and they may be required to give admin consent.

The solution is to set the admin consent to: "Yes"