Print this page

Files Connect Office 365 issue - There was a problem with your authentication attempt

Knowledge Article Number 000206751
Description Cause:

There are two possible causes for this issue:

- There is a setting that is incorrect in the Token Endpoint URL of the Authentication provider used by the External Data Source.

or

- The user does not have the access to the Site Collection defined in the Authorize Endpoint URL of the Authentication provider
Resolution First of all, make sure that you are following one of these two guides for setting up Files Connect:

- The Online guide at The Files Connect Setup Process
- The Official guide at
https://na1.salesforce.com/help/doc/en/salesforce_files_connect_implementation.pdf


After doing the authentication flow, there are two possibilities:

1) If the "Administration Authentication Status" in the External Data Source is "Authenticated," it means the Token Endpoint URL in the Authentication Provider is not correct.

To confirm that it is due to an incorrect setting in the Auth. provider, go into that Auth. provider detail page and copy and paste the Test-Only Initialization URL (at the bottom of the page) into your browser. If your Auth. provider is correctly configured, you will get an XML file containing an org_id and portal_id. If you don't get the XML file, the Auth provider is indeed not correctly configured.

If it is the case, you will need to verify that the Token Endpoint URL are 100% exact (it won't work with a smallest typo).


A correct example would be:
https://accounts.accesscontrol.windows.net/mytestsite.onmicrosoft.com/tokens/OAuth/2?resource=00000003-0000-0ff1-ce00-000000000000/mytestsite.sharepoint.com@mytestsite.onmicrosoft.com



2) If the "Administration Authentication Status" in the External Data Source is "Not authenticated" or "Pending," it means the login used to connect to SharePoint does not have the access to the Site Collection defined in the Authorize Endpoint URL of the Authentication provider. In this case, please verify that:

- The Authorize Endpoint URL in the Authentication provider is exact. It needs to include a path to the SharePoint site collection of the target site and not the target site itself.


- The user has at least the View-only access to all the sites between the site collection and the target site in the hierarchy (including the site collection and the target site).

For example, if the target site is "https://companyname.sharepoint.com/sites/site_collection_name/subsite1/subsite2/subsite3/target_site," the user needs to have at least View-only access to site_collection_name, subsite1, subsite2, subsite3 and target_site.




promote demote