Admin Provisioning Tool Error: The value’s length for key ‘password’ exceeds it’s limit of ‘128’

Microsoft has recently released the new VHD for Dynamics 365 Finance and Operations 10.0.24 to download from LCS. When you instantly try to execute the Admin Provisioning Tool and provide your domain user you will get an error.

The value’s length for key ‘password’ exceeds it’s limit of ‘128’

There are some steps required before you can assign it to your Domain:

  1. Go to > Active Directory > App Registration and register a new App
Register a new application in Azure Active Directory
  1. Provide the One-Box URL as reponse address
  2. Copy the AppID to your clipboard
App Registration for Dynamics 365 FO 10.0.24 One-Box Environment
  1. Execute the “Generate Self-Signed Certificates” PowerShell script from the Desktop
  2. Provide the AppID from the App Registration
Generate Self-Signed Certificates

6. Execute the Admin Provisioning Tool and provide your Domain account address
7. Open in Edge and login

Dynamics 365 Finance and Operations 10.0.24 One-Box Environment

About erpcoder
Azure Cloud Architect and Dynamics 365 enthusiast working in Research & Development for InsideAx

25 Responses to Admin Provisioning Tool Error: The value’s length for key ‘password’ exceeds it’s limit of ‘128’

  1. Marco Tulio Reyes says:

    can you try set up commerce?
    when i try after sync the store dont work

    Any Idea or one step missing

  2. Abdul Mannan says:

    Dear Sir,

    How I can fix this issue in an on-premise environment. my D365 VM 10.0.024 is in an on-premise server. i have applied the same settings in Az AD and applied AZ app id in Self Generete certificate in VM but no luck. now the link of onebox is not opening. please guide. Thanks

    • erpcoder says:

      If the certificate creation succeeded, run the admin provisioning tool. This should work without any error. Restarting the VM may also be a good idea

  3. ciclope49413 says:

    Hi , how generate de certificate ?-. Is a PS1 Script?

  4. emperor says:

    How do you generate the certificate? What is the exact command to execute?

    I used the below and got and error:

    PS C:\WINDOWS\system32> Generate Self-Signed Certificates

    Generate : The term ‘Generate’ is not recognized as the name of a cmdlet, function, script file, or operable program.
    Check the spelling of the name, or if a path was included, verify that the path is correct and try again.
    At line:1 char:1
    + Generate Self-Signed Certificates
    + ~~~~~~~~
    + CategoryInfo : ObjectNotFound: (Generate:String) [], CommandNotFoundException
    + FullyQualifiedErrorId : CommandNotFoundException

  5. Amit Arora says:

    Getting error in Point 6: Time out has expired and the operation has not been completed.

  6. DILIPKUMAR says:

    Thank you, brother, it worked for me

  7. Joasn says:

    When I iputed one-box url “ “, I got an error message, “Must be a valid URL”.
    Would you pls provide more suggestion?

  8. Mahmoud says:

    i followed your instructions and got this error

    Sign in

    Sorry, but we’re having trouble signing you in.

    AADSTS700016: Application with identifier ‘fe1d97e2-51c0-4555-87d4-559fffdfba66’ was not found in the directory ”. This can happen if the application has not been installed by the administrator of the tenant or consented to by any user in the tenant. You may have sent your authentication request to the wrong tenant.

    any help please!

  9. George says:

    Admin user provisioning throwing error : Login failed for user ‘axdbadmin’. Will you please assist to resolve this issue?

  10. erpcoder says:

    Observation when using VM Ware: Install VM Ware tools after creating the self-signed certificates

  11. Evan says:

    Do I have to use an organizational account to register the application or can I use a personal account like as long as it has an azure subscription.

    • erpcoder says:

      You need an Azure Active Directory to register an app.

      • Evan says:

        Do you know anyone who has done it with a non-organization account? I used to run the provisioning tool for 10.0.17 with just my non-org account.

        Now for 10.0.24 I’ve have created the application registration on my non-org account fine in azure portal. It has a default directory and tenant of “”

        I’m successfully generating the self signed certs. But my provisioning is failing and throwing errors like “login failed for user ‘axdbadmin’.”

      • erpcoder says:

        no sorry, the documentation says you need azure ad app registration

  12. Shayan Arshi says:

    Thanks a lot for this information. I worked for me.

  13. Amr says:

    Thanks Very Much

Leave a Reply

Fill in your details below or click an icon to log in: Logo

You are commenting using your account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Connecting to %s

%d bloggers like this: