Skip to content

[Engineering task] Troubleshooting & Support Readiness #5799

New issue
New issue
Open
Open
[Engineering task] Troubleshooting & Support Readiness#5799
Assignees
gladjohn
Labels
internal
@gladjohn

Description

@gladjohn
gladjohn
opened on Mar 3, 2026

Task type

Other

Description

  1. What to look for in logs (MI + WIF/FIC)

    • What to request from customers (MSAL logs, env info, correlation IDs)
    • Key log markers to recognize:
      • MI: identity not assigned, endpoint unreachable, forbidden/unauthorized, invalid_request
      • WIF/FIC: issuer/subject/audience mismatch, wrong tenant/app, OIDC discovery issues
    • “Log reading” checklist for support

  2. Common issues seen by engineering (MI + WIF/FIC)

  • MI: identity not assigned, wrong identity selected, IMDS blocked, network restrictions, wrong resource/audience, RBAC propagation delays
  • WIF/FIC: issuer mismatch, subject mismatch, audience mismatch, wrong tenant/app registration, missing/incorrect OIDC issuer setup, clock skew (if applicable)
  • Build a quick mapping: Symptom → Likely Cause → First 3 Checks
  1. Known limitations / gotchas (support-facing)
  • Frequently misunderstood constraints
  • Edge cases where fallback behavior confuses customers
  • Escalation criteria: when to route to product/engineering

Solution

No response

Metadata

Metadata

Assignees

Labels

internal

Type

No type

Projects

MSAL Customer Trust

Status

Committed

Milestone

No milestone

Relationships

None yet

Development

No branches or pull requests

Issue actions