Problem: Consider the following scenario: Cause: When a client is redirected to authenticate to an OIDC Identity Provider (IDP), the URI that the client expects to be sent back to after authentication is listed in the “redirect_uri” property in the query string of the request.For example, Fiddler shows that the redirect_uri for this request is “/sites/TEST1/Shared

Including info on the mysterious ScopedClientIdentifier property in SharePoint Server Subscription Edition (SPSE). Overview To configure multiple web applications in a single farm to use OIDC authentication with Entra ID, you have two options: Use a single Entra ID app registration for all web apps. Use separate Entra ID app registrations for each web app.

This procedure can also be used to move SharePoint Workflow Manager (SPWFM) databases to a new SQL server, or even to upgrade from “Classic WFM” to SPWFM. Update 7/6/23: I was able to get this content published as “Official Microsoft Documentation”. See SharePoint Workflow Manager Farm Restore and Disaster Recovery. Update 5/16/23: I found that

Use this procedure to remove the connection from SharePoint to SharePoint Workflow Manager (SPWFM) and recreate it.

Update 4/18/23: This content has been published as “official” documentation on learn.microsoft.com. See Reset Certificate Generation Key for SharePoint Workflow Manager. The SharePoint Workflow Manager (SPWFM) Certificate Generation Key is similar to the SharePoint farm passphrase in that you need it to join a SPWFM farm. When joining an existing SPWFM farm, for example during