Hi @David Wong , for back-end applications without user login, client credentials flow is generally used.
Before authorization, you need an administrator account to register a new app at Azure app registration portal, add permissions to it, and click Grant.
And this authentication method requires application permission: Files.ReadWrite.All
or Sites.ReadWrite.All
as described in the documentation:
Hope this helps, best wishes.
If the answer is helpful, please click "Accept Answer" and kindly upvote it. If you have extra questions about this answer, please click "Comment".
Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.