Introduction #
You might receive an email stating “Welcome to the new Army desktop experience! You have now been enabled for access to Army Enterprise AVD” but your are not out of the woods yet. If you login too soon, you may get error message AADSTS50017.
Error Breakdown #
Here are a few tips to help you avoid this error:
- Be patient. Your account may not be fully provisioned. Once you request your access, wait approximately 20 minutes to one (1) day depending on the volume.
- Try the AVD web browser portal.
- If on an Apple MacBook, use the Identiv CAC Reader or use a Yubikey.
Method #1 #
If on an Apple MacBook, manually delete the identity you are having problems accessing from your keychain:
- Disconnect your Yubikey or unplug your CAC reader from your computer
- Search for the entry named “certauth.login.microsoftonline.us” and then press the delete key.
- Reconnect your Yubikey or CAC reader to your computer
Method #2 #
If on an Apple MacBook do the following:
- Disconnect your Yubikey or unplug your CAC reader from your computer
- Open Terminal
- Run “sudo rm -rf /var/db/TokenCache/tokens/” (without the quotes)
- Reconnect your Yubikey or CAC reader to your computer
Method #3 #
Visit the AVD Onboarding Forum on Milsuite.
