I’m exposing my MCP server through a ChatGPT custom connector.
Because ChatGPT requires a DCR-style OAuth client and Entra ID doesn’t support that, I’m using Auth0 as a proxy identity provider with an Entra ID Enterprise Connection.
The setup works only in the first browser I used.
In any new browser (or for other employees), the login fails immediately.
Auth0 logs show an error saying “no connections enabled for this client”, even though the Entra ID connection is enabled for the ChatGPT-generated application.
Additional details:
-
The client_id sent by ChatGPT matches the one in my Auth0 application.
-
The Entra ID Enterprise Connection is enabled for that application.
-
No Entra login popup appears in new browsers.
-
The original browser still works even after token expiry, so it’s not using a cached access token.
It looks like the first browser is successfully using an existing Auth0 session cookie, but all other browsers fail because Auth0 believes no connections are available.
What could cause Auth0 to report “no connections enabled” when the connection is enabled, and why would only the original browser still be able to authenticate?
I’m trying to understand what configuration could lead to this mismatch between the first working browser and all others.