You receive the following error message when trying to “Fetch and Select” Domains within the Okta Office 365 app:
Could not communicate with Office 365 to validate your credentials, received error: 400 Showing a modal dialog box or form when the application is not running in UserInteractive mode is not a valid operation. Specify the ServiceNotification or DefaultDesktopOnly style to display a notification from a service application.
Usually that means there is still a MFA prompt required in Azure AD – you have to deactivate that!
You have to check the following configurations:
- Security Defaults: https://thomasheinz.net/microsoft-365-disable-security-defaults/
- Conditional Access rules – sometimes this can be quite hidden in a policy – so look good 😉
After resolving that, configuration in Okta should work as expected.