For help with Microsoft SSO errors
If your Microsoft account is managed by an admin, you might see an error reading Need admin approval or Approval required when you're logging in to Paid.
This error means that your Microsoft administrator hasn't given your account permission to use third-party apps like Paid.
Instructions
As a first step, contact your administrator and ask if they can enable the "Users can request admin consent to apps they are unable to consent to" setting in Azure Active Directory. The administrators can find this setting in Enterprise applications → Consent and permissions → Admin consent settings.
If your administrator can't let users request admin consent follow the steps below to solve the Need admin approval error when:
When you sign into the Paid using your Microsoft account, you connect to the Paid Identity app. This app requests these Graph API permissions:
- openid
- profile
- user.read
If your organisation is using strict security settings, it might be the case that only your administrator can grant these permissions.
In this case, the easiest solution is for your administrator to sign in for you using their account. They should use a private browsing mode if multiple accounts are active on the same device.
After they sign in once, the Paid app will appear in the list of Enterprise apps in your organisation's Azure Active Directory with the right permissions granted.
You should be able to log in and use Paid after your administrator has logged out.