Why can't I update my token after setting up an access policy?

keita yamashiro 0 Reputation points


I have created and updated access tokens using an application I created.

I can create them, but the update tokens are blocked by the access policy.

I want to set up an access policy that excludes applications, can't I use refresh tokens?

I would like to know if anyone can help me.

The following API is used to create and update tokens.


Access Policy Settings

■ Conditional Access policy
	・Users:All users
	・Cloud apps or actions:
        Include: All cloud apps
        User risk:
            Not configured
        Sign in risk:
            Not configured
        Device platforms:
            Not configured
            Not configured
        Client apps:
            Not configured
        Device state:
            Not configured
  ・Access Control
   permission: Access Blocked

Microsoft Graph
Microsoft Graph
A Microsoft programmability model that exposes REST APIs and client libraries to access data on Microsoft 365 services.
10,018 questions
Microsoft Entra ID
Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
18,719 questions
{count} votes

1 answer

Sort by: Most helpful
  1. Shweta Mathur 25,486 Reputation points Microsoft Employee

    Hi @keita yamashiro ,

    Thanks for reaching out.

    Glad you are able to resolve the issue by excluding Office 365. Office 365 apps for Enterprise is not a cloud app. The Office 365 cloud app basically refers to the SaaS apps (Exchange Online, SharePoint Online, etc).

    Is your application calling any of the Office 365 application internally?



    0 comments No comments