Why can't I update my token after setting up an access policy?

keita yamashiro 0 Reputation points
2023-01-17T09:21:34.74+00:00

Hi,

I have created and updated access tokens using an application I created.

I can create them, but the update tokens are blocked by the access policy.

I want to set up an access policy that excludes applications, can't I use refresh tokens?

I would like to know if anyone can help me.

The following API is used to create and update tokens.

/oauth2/v2.0/token

Access Policy Settings

■ Conditional Access policy
	・Users:All users
	・Cloud apps or actions:
        Include: All cloud apps
        Exclude: 
          ・MyCreateApp
	 
	・Conditions
        User risk:
            Not configured
        Sign in risk:
            Not configured
        Device platforms:
            Not configured
        Locations:
            Not configured
        Client apps:
            Not configured
        Device state:
            Not configured
  ・Access Control
   permission: Access Blocked

Azure Active Directory
Azure Active Directory
An Azure enterprise identity service that provides single sign-on and multi-factor authentication.
12,685 questions
Microsoft Graph
Microsoft Graph
A Microsoft programmability model that exposes REST APIs and client libraries to access data on Microsoft 365 services.
584 questions
{count} votes

1 answer

Sort by: Most helpful
  1. Shweta Mathur 11,081 Reputation points Microsoft Employee
    2023-01-30T07:20:22.6866667+00:00

    Hi @keita yamashiro ,

    Thanks for reaching out.

    Glad you are able to resolve the issue by excluding Office 365. Office 365 apps for Enterprise is not a cloud app. The Office 365 cloud app basically refers to the SaaS apps (Exchange Online, SharePoint Online, etc).

    Is your application calling any of the Office 365 application internally?

    Thanks,

    Shweta

    No comments