Fix Connect-SPOService : Could not authenticate to SharePoint Online using OAuth 2.0
On
< 1 minute
Problem
When you run the cmdlet Connect-SPOService, you get the following error.
Connect-SPOService : Could not connect to SharePoint Online.
At line:1 char:1
+ Connect-SPOService -Url https://$orgName-admin.sharepoint.com -Creden ...
+ ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
+ CategoryInfo : NotSpecified: (:) [Connect-SPOService], InvalidOperationExce
ption
+ FullyQualifiedErrorId : System.InvalidOperationException,Microsoft.Online.SharePoint
.PowerShell.ConnectSPOServiceFix/Soution
First, make sure you are connecting to the tenant admin site, and the protocol is https.
https://tenantname-admin.sharepoint.com
If that is not the problem, then you added an Active Directory Federation Services (ADFS) claim rule to block legacy authentication requests that don’t originate from your expected IP range. The Connect-SPOService cmdlet uses legacy authentication but doesn’t pass along the IP range information, so the cmdlet is blocked.
To work around this issue, add the following registry subkey on the client computer to force Modern Authentication.
[HKEY_CURRENT_USER\Software\Microsoft\SPO\CMDLETS]
“ForceOAuth” = dword:00000001
Thanks Kwesi, the registry workaround thus help get around this issue