25,185 questions
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(188.79999999999998, 26%, 28%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EN%3C/text%3E%3C/svg%3E)
Thank you for posting this in Microsoft Q&A.
I understand you are trying to execute a query to obtain conditional access policies in Graph Explorer with a Global Reader user, but you have received an error message "You cannot perform the requested operation, required scopes are missing in the token".
Conditional access policies can be acquired using a Global reader user through Microsoft Entra. However, in order to utilize Graph Explorer, the "Policy.Read.All" scope is necessary.
To obtain conditional access policies via Graph Explorer use below HTTP request.
GET https://graph.microsoft.com/v1.0/identity/conditionalAccess/policies
Prior to making the request, ensure that you have granted permission for the "Policy.Read.All" scope_._
For your reference: https://learn.microsoft.com/en-us/graph/api/conditionalaccessroot-list-policies?view=graph-rest-1.0&tabs=http#code-try-1
Hope this helps. Do let us know if you any further queries.
Please remember to "Accept Answer" if answer helped you. This will help us as well as others in the community who might be researching similar questions.
Thanks,
Navya.
