After the configuration, I was able to generate a service instance and smartobjects. I can use the User SmO and get AAD users.
I then created a Realm so that users can log into K2 using AAD. However, I'm now getting 2 errors:
1) When trying to add an AAD user to the security in Management: "Service: URMService Service Guid: 4c2f62ea-be8d-4600-a2b5-185902bdd20a Severity: Error Error Message: Exception has been thrown by the target of an invocation. OAuth token requires authorization. InnerException Message: "
2) When attempting to log into Management using the AAD realm:
Best answer by DavidThadAerne
Thanks for the Kb on error #1. That is now resolved. I was able to add my AAD users to the security in Management.
I am still having issues with item #2
"AADSTS700016: Application with identifier 'https://k2fivetraining.discovertechnologies.com/Runtime/' was not found in the directory '1487d71c-c4*personal details removed*ad0-871b-8eb5d2ec9502'. This can happen if the application has not been installed by the administrator of the tenant or consented to by any user in the tenant. You may have sent your authentication request to the wrong tenant"
I'm not sure where the variable is getting grabbed from. I checked the App in Azure + Manifest and I've also re-checked the Realm setup. I'm guessing it's an issue with the setup on the Realm but can figure out where.