Skip to content

[Engineering task] Troubleshooting & Support Readiness #5799

Closed as not planned
Closed as not planned
[Engineering task] Troubleshooting & Support Readiness#5799
Assignees
4gust
Labels
internal
@gladjohn

Description

@gladjohn
gladjohn
opened on Mar 3, 2026

Task type

Other

Description

  1. What to look for in logs (MI + WIF/FIC)

    • What to request from customers (MSAL logs, env info, correlation IDs)
    • Key log markers to recognize:
      • MI: identity not assigned, endpoint unreachable, forbidden/unauthorized, invalid_request
      • WIF/FIC: issuer/subject/audience mismatch, wrong tenant/app, OIDC discovery issues
    • “Log reading” checklist for support

  2. Common issues seen by engineering (MI + WIF/FIC)

  • MI: identity not assigned, wrong identity selected, IMDS blocked, network restrictions, wrong resource/audience, RBAC propagation delays
  • WIF/FIC: issuer mismatch, subject mismatch, audience mismatch, wrong tenant/app registration, missing/incorrect OIDC issuer setup, clock skew (if applicable)
  • Build a quick mapping: Symptom → Likely Cause → First 3 Checks
  1. Known limitations / gotchas (support-facing)
  • Frequently misunderstood constraints
  • Edge cases where fallback behavior confuses customers
  • Escalation criteria: when to route to product/engineering

Solution

No response

Metadata

Metadata

Assignees

Labels

internal

Type

No type

Fields

No fields configured for issues without a type.

Projects

MSAL Customer Trust

Status

Done

Milestone

No milestone

Relationships

None yet

Development

No branches or pull requests

Issue actions