This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(41.6, 0%, 14%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EMH%3C/text%3E%3C/svg%3E)
Hi,
i want to use an Azure AD SP to access my SharePoint Sites and Lists.
I added the Sites.FullControl.All role but when i receive my token, i dont see any roles at all.
When i add Application Roles for Microsoft Graph, those roles are displayed in the token.
How do i access my SP with SharePoint Roles, so that i can use Microsoft Graph ?
Best regards,
Mark
Those are different resources (note the value of the "aud" claim in the token you've obtained). If you want to obtain a token that includes the permissions you've granted for the SPO resource, make sure to add the corresponding scope in your token request.
Do note that the Sites.FullControl.All scope is also available for the standard Microsoft Graph resource, so you might as well add it therein (depending on your use case that is).
Oh god - the 2nd part solves the issue! Thank you very much! :)