<iframe src="https://www.googletagmanager.com/ns.html?id=GTM-M74D8PB" height="0" width="0" style="display:none;visibility:hidden">
Loading
Skip to NavigationSkip to Main Content
System Status
Announcements
Announcements
Search
Search
Select Language
Knowledge Base
Knowledge Articles
Support Videos ↗
Documentation
Product Documentation ↗
Developer Documentation ↗
Product Release Notes ↗
Community
Events & Webinars
Okta Ideas ↗
Resources
Product Hub
Customer Success Hub
Product Release Update
Learning
Okta Learning ↗
Get Support
Open a Case
HomeKnowledge Base
Can onmicrosoft.com Tenants Be Used for Federation in Office 365 with Okta
Feb 20, 2025
Single Sign-On
Okta Classic Engine
Okta Identity Engine
Overview

When adding a *.onmicrosoft.com domain to the Okta Office 365 app, the following errors might be encountered:

  • Federating to the 'Default' domain is not allowed. Please change your Office 365 domain for this app. domain=*.onmicrosoft.com

.onmicrosoft.com domain is the default domain 

  • Could not setup the domain federation with Office 365; please retry setting up the federation for this domain after a few hours.

*.onmicrosoft.com domain is the tenant domain

Applies To
  • Office 365 WS-Federation
Cause

The first error is generated due to the *.onmicrosoft.com domain being set as the default domain.

 

The second error is returned because the *.onmicrosoft.com domain is the tenant domain.

Solution
  • If the *.onmicrosoft.com domain selected for federation is set as the default domain, a different domain must be selected as the default domain.
  • If the *.onmicrosoft.com domain selected for federation is the tenant domain, a different domain must be used for federation. A tenant domain is the domain created upon tenant setup.

 

 

Recommended content

Still looking for help?
Loading
Can onmicrosoft.com Tenants Be Used for Federation in Office 365 with Okta