Windows Desktop Login Enrollment Failure: Unable to Obtain Azure AD Access Token

  • Updated on Feb 9, 2026
  • Published on Nov 4, 2025
  • 1 minute(s) read
  • e
  • EA
 Prev Next

This article explains that new users enrolling in Beyond Identity Windows Desktop Login on Hybrid or Azure AD–joined devices may encounter an “Unable to obtain Azure AD Access Token” error, which is resolved in version 2.84.2 and later.

Symptoms

Upon enrolling a Windows device for the Windows Desktop Login, the enrollment fails with the error message “Unable to obtain Azure AD Access Token.”

Impact

Who is not impacted?

  • Customers not using Beyond Identity Windows Desktop Login are not impacted.

  • Customers using Beyond Identity authentication to their SSO are not impacted.

  • Customers using Beyond Identity authentication to their SSO as MFA are not impacted.

  • Existing users who are already onboarded and enrolled with Beyond Identity Windows Desktop login are not impacted.

  • Customers enrolling in Windows Desktop Login using On-prem domain-joined Windows devices are unaffected.

Who is impacted?

  • New users enrolling with the Beyond Identity Windows Desktop Login solution on Hybrid Joined or Azure Joined Windows Devices might be impacted by this issue.

  • Existing users trying to unenroll from the Beyond Identity Windows Desktop Login solution might be impacted by this issue.

Resolution

Version 2.84.2 and later include a fix that addresses this problem.

You can upgrade to the latest version by downloading the installer from https://app.byndid.com/desktop-login/downloads.

Related articles