Azure SSO Problems
Hi there,
I know it's been a while since you raised this issue, BUT I am getting the exact same error trying to configure LogMeIn SSO with Azure AD. I have reached out to LogMeIn support (unsuccessfully). I also tried Microsoft support who pointed out that Client app ID: 9efc94c4-b491-4f36-9779-3a5c310ff2a1 does not exists in my tenant. Wondering what solved your issue ???
AADSTS650056: Misconfigured application. This could be due to one of the following: the client has not listed any permissions for 'AAD Graph' in the requested permissions in the client's application registration. Or, the admin has not consented in the tenant. Or, check the application identifier in the request to ensure it matches the configured client application identifier. Or, check the certificate in the request to ensure it's valid. Please contact your admin to fix the configuration or consent on behalf of the tenant. Client app ID: 9efc94c4-b491-4f36-9779-3a5c310ff2a1.
This is a combination of DWilliams14 comments for anyone else having an issue with this:
"For anyone else having this issue, I was able to resolve it by changing the identifier URL in the Azure AD App.
By default it is https://authentication.logmeininc.com/saml/metadata/sp and the instructions say not to change it, but changing it to https://authentication.logmeininc.com/saml/sp fixed this error for me - this is the url that they say to use if you look at the generic instructions for setting up SAML manually instead of the Azure specific ones.
The generic instructions for 'Custom Enterprise Sign-In Configuration' that you linked are fine. However the instructions for Azure AD specifically are not. If you look at this article: https://support.logmeininc.com/central/help/set-up-enterprise-sign-in-sso, under step 2 follow the link for Azure AD which takes you here: https://learn.microsoft.com/en-us/entra/identity/saas-apps/logmein-tutorial
On that page, under 'Configure Microsoft Entra SSO', step 5 says "On the Basic SAML Configuration section, the user does not have to perform any steps as the app is already pre-integrated with Azure."
However, the app default setting for entity ID is "https://authentication.logmeininc.com/saml/metadata/sp" which is incorrect. Within the azure app while configuring, it also tells you to use that incorrect url in the tooltip."
