Why can't I update my token after setting up an access policy?

keita yamashiro 0 Reputation points
2023-01-17T09:21:34.74+00:00

Hi,

I have created and updated access tokens using an application I created.

I can create them, but the update tokens are blocked by the access policy.

I want to set up an access policy that excludes applications, can't I use refresh tokens?

I would like to know if anyone can help me.

The following API is used to create and update tokens.

/oauth2/v2.0/token

Access Policy Settings

■ Conditional Access policy
	・Users:All users
	・Cloud apps or actions:
        Include: All cloud apps
        Exclude: 
          ・MyCreateApp
	 
	・Conditions
        User risk:
            Not configured
        Sign in risk:
            Not configured
        Device platforms:
            Not configured
        Locations:
            Not configured
        Client apps:
            Not configured
        Device state:
            Not configured
  ・Access Control
   permission: Access Blocked
Microsoft Graph
Microsoft Graph
A Microsoft programmability model that exposes REST APIs and client libraries to access data on Microsoft 365 services.
10,707 questions
Microsoft Entra ID
Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
19,656 questions

1 answer

Sort by: Most helpful
Most helpful Newest Oldest
  1. Shweta Mathur 27,936 Reputation points Microsoft Employee
    2023-01-30T07:20:22.6866667+00:00

    Hi @keita yamashiro ,

    Thanks for reaching out.

    Glad you are able to resolve the issue by excluding Office 365. Office 365 apps for Enterprise is not a cloud app. The Office 365 cloud app basically refers to the SaaS apps (Exchange Online, SharePoint Online, etc).

    Is your application calling any of the Office 365 application internally?

    Thanks,

    Shweta

    0 comments