Error Resolution of Web client reply address for SSO in Dynamics NAV - CloudFronts

Error Resolution of Web client reply address for SSO in Dynamics NAV


A Single Sign-on (SSO) user experience is achieved between Microsoft Dynamics NAV and the Office 365 Web Applications where the User is authenticated using Office 356 credentials to access NAV Windows client and Webclient.


After configuration of SSO in NAV, the Windows client configures SSO successfully but the Web client throws an error.

AADSTS50011: The reply address http://localhost/DynamicsNAV100/WebClient/SignIn.aspx?ReturnUrl=%2fDynamicsNAV100%2fWebClient%2f does not match the reply addresses configured for the application: http://localhost/DynamicsNAV100/WebClient/. 


  • Microsoft Dynamics NAV 2017
  • Internet Information Services(IIS)

Resolution of the Error:

  1. Browse to Internet Information Service(IIS)
  2. Select on Microsoft Dynamics NAV, then click on Bindings
  3. Click on Add.
  4. In the Type Field select ‘https’.
  5. In the SLL certificate, select the self-signed certificate generated from the drop down.
  6. Click on Restart.
  7. Click on Browse link of the Web server Instance and save the url.
  8. Configure SSO for Dynamics NAV and in the below command
    Set-NavSingleSignOnWithOffice365 -AuthenticationEmail “YourAuthenticationEmail” -NavServerInstance “YourNAVServerInstance” -NavUser “YourNavUser” -NavWebAddress “YourNavWebClientAddress” -NavServerCertificateThumbprint "YourNAVServerCertificateThumbprint" -NavWebServerInstanceName “YourNavWebServerInstanceName

    copy the url saved in the “YourNavWebClientAddress” address.

  9. After Binding, Enter your Office 365 credentials and sign in.
  10. SSO works successfully for Web client after Binding of the SLL certificate.


Share Story :