Share via

Email connectivity issue using graph APIs

Microsoft Q & A 381 Reputation points
2022-12-23T11:10:48.597+00:00

We are getting below error all the time when our email listener is trying to mark the email as read however the listener is able to process the email. No failure logs in Azure for the application.
I have attached log snippet below . Could you please check and let us know why this issue is happening.

2022-12-22 15:03:08,934 [ EMAIL-Thread-3646] [ STANDARD] [ ] [ SOODEVCH41:01.01.04] (nal.msgraph.MSGraphEmailClient) DEBUG EMAIL.DHLEmailExchange.Listener|MessageID(******@AS8PR07MB7639.eurprd07.prod.outlook.com) - Graph service exception Error code: ErrorAccessDenied

Error message: Access is denied. Check credentials and try again.

POST https://graph.microsoft.com/v1.0/users/******@globaltest.com/mailFolders/AQMkADU2OWQyZjc1LWQyYzktNGFjMy1hNmNhLWMyNzM0MTg1ZTZlOAAuAAADvIzHfVVglUyJLcHzkpm8OwEALTDFNp5Bx0OPWuXORB9vHQAAAgEMAAAA/messages/AQMkADU2OWQyZjc1LWQyYzktNGFjMy1hNmNhLWMyNzM0MTg1ZTZlOABGAAADvIzHfVVglUyJLcHzkpm8OwcALTDFNp5Bx0OPWuXORB9vHQAAAgEMAAAALTDFNp5Bx0OPWuXORB9vHQADKRdl1QAAAA==

SdkVersion : graph-java-v1.4.0

Authorization : Bearer eyJ0eXAiOiJKV1QiLCJub25jZSI6ImF5TEFLUWw0ZGZJTXNOWlRoZWswRDdCVkNFM2pnQ09qa2pLcmJUZzFXRFEiLCJhbGciOiJSUzI1NiIsIng1dCI6Ii1LSTNROW5OUjdiUm9meG1lWm9YcWJIWkdldyIsImtpZCI6Ii1LSTNROW5OUjdiUm9meG1lWm9YcWJIWkdldyJ9.eyJhdWQiOiJodHRwczovL2dyYXBoLm1pY3Jvc29mdC5jb20iLCJpc3MiOiJodHRwczovL3N0cy53aW5kb3dzLm5ldC81ZDQ3MTc1MS05Njc1LTQyOGQtOTE3Yi03MGY0NGY5NjMwYjAvIiwiaWF0IjoxNjcxNzIwMDE3LCJuYmYiOjE2NzE3MjAwMTcsImV4cCI6MTY3MTcyMzkxNywiYWNjdCI6MCwiYWNyIjoiMSIsImFjcnMiOlsidXJuOnVzZXI6cmVnaXN0ZXJzZWN1cml0eWluZm8iXSwiYWlvIjoiQVRRQXkvOFRBQUFBN2FwOXYvNUJWeXlwZy9VZUJnb1c1SmN3RTVZN2dUd1dnV3g5THVVVnVYL29PdDhGb1NBN1dvd2czS3o3TTc2QyIsImFtciI6WyJwd2QiXSwiYXBwX2Rpc3BsYXluYW1lIjoiTkRQZUVtYWlsQXBwIiwiYXBwaWQiOiIyY2RkODU1MC1lM2Q2LTRkZTgtYTUwYS05NzdlNjFlZjg4ZTciLCJhcHBpZGFjciI6IjEiLCJnaXZlbl9uYW1lIjoiU1ZDIG5kcGV4ZWN1dGVnbG9iYWwiLCJpZHR5cCI6InVzZXIiLCJpcGFkZHIiOiI1NC4yMTQuNS43IiwibmFtZSI6IlNWQyBuZHBleGVjdXRlZ2xvYmFsICh0byBhdXRoZW50aWNhdGUgTm9raWEgZW1haWxzIHVzaW5nIG9BdXRoKSIsIm9pZCI6IjZhZDhjNzRlLTQ4MmEtNDZmZC05MmIyLTEzNTYyNWI4ODMwMyIsInBsYXRmIjoiMTQiLCJwdWlkIjoiMTAwMzIwMDIyQTA5RjBCOSIsInJoIjoiMC5BUkFBVVJkSFhYV1dqVUtSZTNEMFQ1WXdzQU1BQUFBQUFBQUF3QUFBQUFBQUFBQVFBTncuIiwic2NwIjoiQ2hhdC5SZWFkIENoYXRNZXNzYWdlLlNlbmQgTWFpbC5SZWFkLlNoYXJlZCBNYWlsLlJlYWRXcml0ZSBNYWlsLlNlbmQgb3BlbmlkIHByb2ZpbGUgVXNlci5SZWFkQmFzaWMuQWxsIGVtYWlsIiwic3ViIjoibm42Ql80VDJiVGxlMjQyeFlYNXhiYWI1bDdidHpscEVnV2IyTXhXMUh2YyIsInRlbmFudF9yZWdpb25fc2NvcGUiOiJFVSIsInRpZCI6IjVkNDcxNzUxLTk2NzUtNDI4ZC05MTdiLTcwZjQ0Zjk2MzBiMCIsInVuaXF1ZV9uYW1lIjoic3ZjbmRwZXhlY3V0ZWdsb2JhbEBjc2Eubm9raWEuY29tIiwidXBuIjoic3ZjbmRwZXhlY3V0ZWdsb2JhbEBjc2Eubm9raWEuY29tIiwidXRpIjoidVdMaXNnTDJ2VXlRdjg0M0FZeHhBQSIsInZlciI6IjEuMCIsIndpZHMiOlsiYjc5ZmJmNGQtM2VmOS00Njg5LTgxNDMtNzZiMTk0ZTg1NTA5Il0sInhtc19zdCI6eyJzdWIiOiJ2TmJobTdwU1hwMzFjMm92UGozXzQ1djZaTzBVSmVES2dPQWpGT05EMzNzIn0sInhtc190Y2R0IjoxNDI0ODExNTU1LCJ4bXNfdGRiciI6IkVVIn0.qb7YIFx4vqZxSyoeZL7xrJ7dXUGj5N-o0_7ZMgUrlUkyUwMIZryQjiEPJxnwMvvhNPreWO6OeppxVhspv8sIkWzDokZDgB6Oe9zuDC8LV3iiTXoOKuGVcW6RPrJvFCkanphOaL-Ei8FyqURDW3680fUFiV7JcmjafAgO6mHiJRDjxWqs5fo4rbyPr23_K5oMqvK7geXv4iXbLPS0krp7GeY-1MSIoiV2ICwSK6BYCYjMLv1agTRtS1J1Twc3vEz-GnMDk-EJqjvohH8kfNsDaPxW0XSUTrUKA88hXChGDAuormKz3aH0QNBQFkdsVXUGU0n-d8hDJn-nfQgXomflGA

{"isRead":true}

403 : Forbidden

HTTP/1.1 403 Forbidden

Transfer-Encoding : chunked

Strict-Transport-Security : max-age=31536000

Cache-Control : private

x-ms-ags-diagnostic : {"ServerInfo":{"DataCenter":"West US 2","Slice":"E","Ring":"1","ScaleUnit":"000","RoleInstance":"CO1PEPF0000221D"}}

client-request-id : a363adf2-8d1b-4c01-aecc-e9b08f7fc8df

request-id : a363adf2-8d1b-4c01-aecc-e9b08f7fc8df

Date : Thu, 22 Dec 2022 15:03:08 GMT

Content-Type : application/json; odata.metadata=minimal; odata.streaming=true; IEEE754Compatible=false; charset=utf-8

{

"error": { 

"code": "ErrorAccessDenied",  

"message": "Access is denied. Check credentials and try again."

}

}

Exchange Exchange Server Management
Microsoft Security Microsoft Graph
0 comments
Accepted answer
  1. Shivam Dhiman 6,081 Reputation points
    2022-12-23T14:31:33.567+00:00

    Hi @Microsoft Q & A

    You are getting 403 : Forbidden error because of the missing permission. As we are Creating message with shared Mailbox(using Delegated Permission) for that you need Mail.ReadWrite.Shared delegated permission. This permission allows you to Read and write user and shared mail.

    After consenting this permission, I am able to create mail. Please refer to the below sample screenshot.

    273728-shared-mailbox.png

    Hope this helps.

    If the answer is helpful, please click Accept Answer and kindly upvote. If you have any further questions about this answer, please click Comment.

    0 comments

0 additional answers

Sort by: Most helpful
Most helpful Newest Oldest

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.