How to Fix error Connect-PnPOnline: The user or administrator has not consented to use the application with ID ‘31359c7f-bd7e-475c-86db-fdb8c937548e

Recently I tried to connect to Sharepoint online using Connect-PnPOnline cmdlet and received below error message. In this blog post, we will see alternative ways to connect using this command which utilized interactive login methods.

In below screenshot, you can see the command along with the error message.

Connect-PnPOnline -Url -PnPManagementShell
Error Message
Connect-PnPOnline : AADSTS65001: The user or administrator has not consented to use the application with ID ‘31359c7f-bd7e-475c-86db-fdb8c937548e’
named ‘PnP Management Shell’. Send an interactive authorization request for this user and resource.
Trace ID: c6548a52-81bf-4d6d-bf7e-68bb179b6700
Correlation ID: 6f4ad9fb-531a-40cc-ac20-5da83021e3cf
Timestamp: 2021-12-21 13:17:34Z
At line:1 char:1
Connect-PnPOnline -Url
~~~~~~~~~~~~~ CategoryInfo : NotSpecified: (:) [Connect-PnPOnline], MsalUiRequiredException
FullyQualifiedErrorId : Microsoft.Identity.Client.MsalUiRequiredException,PnP.PowerShell.Commands.Base.ConnectOnline

Solution / Fix for Connect-PnPOnline Error

As the error states that the administrator has not consented to use this application. Therefore, you need to send an Interactive Authorization request for this user and resource.

There are two ways you can interactively authenticate to sharepoint and connect using Connect-PnpOnline command. One of the commands is shown below. You can replace the URL with your organization Sharepoint Admin URL.

To Find the Sharepoint URL you can login on the (Microsoft Admin Center) and click on the Sharepoint under Admin centers. The URL can be located in the address bar of the Sharepoint Admin Center.

Connect-PnPOnline -Url -PnPManagementShell

After you run this command, you will need to go to and enter the code which will display on your powershell console.

Connect-PnPOnline -Url -PnPManagementShell

Enter the code.

Enter a Code

If there are multiple accounts showing in the list and you want to login with another account then choose the option Use another account.

PnP Management Shell Sign in Page.

Enter Global Administraor account email address.

PnP Management Shell Sign in Page.

Enter the password of Global Administrator account.

Microsoft 365 sign in PnP Management Shell Sign in Page.

Provide consent to this application. Check the box Consent on behalf of your organization and click on Accept.

You can also go through all the permissions which the application will have / consent to and proceed further.

PnP Management Shell Permission Request Page.

Once the consent is provided, you will get the console returned by powershell which means you are successfully authenticated using Connect-PnPPowershell command.

Connect-PnPOnline Successful

You can verify the connectivity to Sharepoint online via Powershell by running any command for example: Get-PnPSite.


After you are connected successfully via powershell. There is no further action required. However if you want to verify the application which you consented to earlier and get more details about it, you can go onto the Azure Portal. A new Enterprise Application named PnP Management Shell has been created for you and permissions are also provided.

Location of the application:

Azure Active Directory -> Enterprise Applications -> All Applications -> PnP Management Shell

PnP Management Shell azure enterprise applications

Click on PnP Management Shell under Enterprise Applications and then click on Roles and administrators. You can verify the Administrative Roles assigned to this application.

PnP Management Shell Enterprise Application Roles.

Another way you can authenticate to Connect-PnPOnline Cmdlet is by using -Interactive Switch.

Connect-PnPOnline -url -Interactive

Leave a Comment