serviceNow Add user to group- Azure AD "403 - Forbidden username/password combo"

Question

Has anyone fixed this error with MS Azure AD spoke. I could add a user to Azure AD with same OAUTH token, but adding the user to an existing group fails with error shown as "Method failed: (/v1.0/groups/<group id here>/members/$ref) with code: 403 - Forbidden username/password combo"....my token already carries https://graph.microsoft.com/GroupMember.ReadWrite.All, https://graph.microsoft.com/Directory.ReadWrite.All , and https://graph.microsoft.com/Group.ReadWrite.All...and yet I get the above error with another message saying "Forbidden Request. Please Check Oauth Token and scope permission"

Wondering whether I need to modify default entity scope/profile at SN side of it as well?

Answer 1

Hi @Rahul Singh ,

Thanks for reaching out.

I tried to add user to group in Azure AD with GroupMember.ReadWrite.All scope in access token and able to add the user successfully.

Make sure to decode the token using jwt.ms to check the right scopes in the token.

However, the error "403 - Forbidden username/password combo" you are getting seems to be from the Service Now.

Refer the links with same error: https://support.servicenow.com/kb?id=kb_article_view&sysparm_article=KB0720934
https://www.jotform.com/answers/4221281-api-call-from-servicenow-returns-error-code-403-forbidden-username-password-combo

Hope this will help.

Thanks,
Shweta

---------------------------------------------------

Please remember to "Accept Answer" if answer helped you.