'C# and Microsoft Teams PowerShell Module 3.1.0

I have a C# program that uses the Microsoft Teams PowerShell Module to read policies etc. It did work well with Module Version 2.6.1 After updating to 3.1.0, login via MFA doesn't work anymore (non-MFA still works).

PowerShell Error: Exception = {"Broker response returned error: WAM Error Wam plugin Microsoft.Identity.Client.Platforms.Features.WamBroker.AadPlugin Error code: 3399548929 Error Message: Need user interaction to continue."}

In WIndows Event Viewer: Error: 0xCAA2000C The request requires user interaction. Code: interaction_required Description: AADSTS50078: Presented multi-factor authentication has expired due to policies configured by your administrator, you must refresh your multi-factor authentication to access 'c5fde071-9440-4083-9e3c-b6712ad6e4d5'. Trace ID: 195be915-61f3-4dcc-a53a-70f455ce7200 Correlation ID: 49f54e0f-c928-46c2-b000-8bf1511383a7 Timestamp: 2022-01-27 17:06:55Z TokenEndpoint: https://login.microsoftonline.com/common/oauth2/token Logged at OAuthTokenRequestBase.cpp, line: 449, method: OAuthTokenRequestBase::ProcessOAuthResponse.

Request: authority: https://login.microsoftonline.com/common, client: ecd6b820-32c2-49b6-98a6-444530e5a77a, redirect URI: ms-appx-web://Microsoft.AAD.BrokerPlugin/ecd6b820-32c2-49b6-98a6-444530e5a77a, resource: c5fde071-9440-4083-9e3c-b6712ad6e4d5, correlation ID (request): 49f54e0f-c928-46c2-b000-8bf1511383a7

Any ideas?

Thanks in advance, Joerg

c# code: '''C#

powershell.AddScript("Connect-MicrosoftTeams -AccountId " + App.userName);  
Collection<System.Management.Automation.PSObject> result = new Collection<PSObject>();  
try  
{
result = powershell.Invoke(); 
}  
catch (Exception ex)  
{...}

'''

The Execption is not thrown, only

c++sharppowershellmicrosoft-teams


Solution 1:[1]

Microsoft provides a PowerShell class for C# via system.management.automation.powershell. It works well - except for the new MicrosoftTeams PowerShell Modul (Version 3.1). There have been good reasons not to use Graph. Using plain PowerShell is also not an option. So no - the issue has not been resolved.

Solution 2:[2]

Problem solved! Just omit the -AccountId Parameter from the "Connect-MicrosoftTeams" and it works. That's a different behavior than AzureAD Modul, where you can prepopulate the interactive Logon Window with a username.

Sources

This article follows the attribution requirements of Stack Overflow and is licensed under CC BY-SA 3.0.

Source: Stack Overflow

Solution Source
Solution 1 joergsc
Solution 2 joergsc

Related Questions