Application requested a user session which does not exist.

A possible workaround may be to enable third-party cookies in your browser settings.

Device object was not found in the tenant '{tenantName}' directory.

Remediation: Invalid grant due to the following reasons:
- Requested SAML 2.0 assertion has invalid Subject Confirmation Method
- Application On-Behalf-Of flow is not supported on V2
- Primary refresh token is not signed with session key
- Invalid external refresh token
- The access grant was obtained for a different tenant

<clientAppDisplayName> needs permission to access resources in your organization that only an admin can grant. Admin consent is required for the permissions requested by this application.

Remediation: Ask your tenant administrator to provide consent for this application.

Due to a configuration change made by the admin, or because you moved to a new location, the user must use multi-factor authentication to access the resource. Retry with a new authorize request for the resource.

Remediation: User needs to perform multi-factor authentication. There could be multiple things requiring multi-factor, e.g. Conditional Access policies, per-user enforcement, requested by client, among others.

The user or administrator has not consented to use the application with ID '{identifier}'{namePhrase}. Send an interactive authorization request for this user and resource.