I recently found myself in a situation I haven't experienced in a long time: I got an error message that no one on the internet has had before. Neither DuckDuckGo, Google, nor Bing could find a single hit about the problem, much less a solution. The root cause (spoilers!) ended up being rather boring: I tried to use some features of the Azure cloud platform that are apparently blocked by the IT department of my company.

I don't know exactly why these errors are impossible to find - either they were written by someone in my company's IT department or my employer is the only one who blocks the OAuth authentication flow. Either way, and as a service to the community, I am copying the error messages here.

The first one means that you are trying to use any type of authentication other than the allowed one:

AADSTS1000470: The protocol OAuth2DeviceAuth is blocked for tenant <tenant-id>. Please contact your administrator for assistance.

The second one means that you tried to create a resource that the internal rules don't allow. I know I hit this one when following an ML tutorial, but I can't remember the specifics right now. Hint: If you also got the string "RBAC restrictions" somewhere in the description, then you are seeing the same one:

At least one resource deployment operation failed. Please list deployment operations for details. Please see https://aka.ms/DeployOperations for usage details.

code: RequestDisallowedByPolicy
message: Resource '<resource-id>' was disallowed by policy. Policy identifiers: <bunch of json with redacted information>

If you run into these error messages, feel free to get in touch with me and I'll share all of my poor Azure wisdom with you.