Bypassing the Validation of Microsoft Account Ownership

When an existing Microsoft account that is already registered for one customer account is registered for another customer account, the application validates the ownership of this Microsoft account, which requires the owner of this Microsoft account to create a validation user or a validation DNS record (see Checking the Status of the Microsoft Account for more details). When registering such a Microsoft account through the application's APS REST API, you can bypass ownership validation by performing these steps:

Warning: Bypassing ownership validation is non-standard and not recommended for most installations.

  1. Prepare the Microsoft ID of the Microsoft account.
  2. Prepare the system identifier of the customer account that you are going to register the Microsoft account for.
  3. Prepare the APS identifier of the Microsoft 365 application instance that belongs to the Direct CSP Provider or Indirect CSP Provider of that Microsoft account.

  4. Make this request:

    Copy 
    POST https://BRAND_DOMAIN/aps/2/resources/APS_ID_OF_APPLICATION_INSTANCE/bypass_ownership_validation
    {
        "account_id": SYSTEM_ID_OF_CUSTOMER_ACCOUNT,
        "ms_tenant_id": "MICROSOFT_ID_OF_MICROSOFT_ACCOUNT"
    }

    As a result, an APS resource of the http://www.parallels.com/Office365/BypassOwnershipValidation APS type is created. It contains the Microsoft ID of the Microsoft account and a link to the customer account. This resource indicates that the application must skip ownership validation when the Microsoft account is registered for the customer account.

    Notes:

    1. This functionality works only for registration through the application's APS REST API.

    2. This functionality can also be used under reseller accounts for customer accounts that are descendants of those reseller accounts.

Important: Bypassing the ownership validation of a Microsoft account is a custom operation. The user whose key and secret you use to access the APS REST API must have http://www.parallels.com/Office365/Office365app and POST in its list of allowed operations.

Example

HTTP Request

Copy 
POST https://example.com/aps/2/resources/0bbbc271-90e0-4d48-88a5-6a8c403441aa/bypass_ownership_validation
{
    "account_id": 1000001,
    "ms_tenant_id": "5fefa9f9-09eb-41c1-bc79-fb87f8bc8af8"
}

HTTP Response

N/A

© 2023 Ingram Micro, Inc. All Rights Reserved. Privacy Policy, Terms of Use and Legal

CloudBlue, an Ingram Micro business, uses cookies to improve the usability of our site. By continuing to use this site and/or logging in you are accepting the use of these cookies. For more information, visit our Privacy Policy.
I accept