Account with multiple organizations on AzureDevops on different domains

Juan_Carrey · October 5, 2020, 1:47pm

ALM used: Azure DevOps
CI system used: Azure DevOps
Scanner command used when applicable: N/A
Languages of the repository: C#
Error observed:

When signup/login with an AzureDevops Account that is linked to a secondary organization (not the primary one) and the primary one is in unmanaged state, an error is displayed.

You're not authorized to access this page.

Reason: invalid_client, AADSTS650051: 
Using application 'Sonarcloud' is currently not supported for your organization zartis.com because it is in an unmanaged state.
An administrator needs to claim ownership of the company by DNS validation of ****** before the application Sonarcloud can be provisioned.
Trace ID: ce046616-91ab-4906-81c8-00006edf5102 
Correlation ID: 8b826bc3-cfc5-44d9-91b8-15d2f96b5d60 
Timestamp: 2020-10-05 13:40:56Z

Primary organization on Azure DevOps can not be changed nor deleted.

Steps to reproduce:

Create an organization on Azure Devops for a domain A
Add an email account from a different domain (B) or even gmail I guess.

Potential workaround

Allow the user to select the organization from Azure Devops Organization upon login/signup.

mickaelcaro · October 6, 2020, 7:44am

Hi @Juan_Carrey and welcome to the community.

SonarCloud relies on the common endpoint for signup, therefore, it may not support guest accounts on the primary AD.
Do you still have the possibility to manage access to the primary AD ?

Thanks.

Juan_Carrey · October 7, 2020, 8:01am

Hi yes, we are changing the primary AD and create accounts under the same domain to be able to access sonarcloud and also to have things more tidy. Thanks