Thanks for writing back.
After another night of investigating and debugging I found the problem.
The structure of the access-token was in ver:1.0 (I need version 2.0).
The reason because I had somehow a wrong access-token structure version were wrong set scopes.
After I correct the scopes to getting the access-token it worked everything.
Thanks for your help and we can close this thread.
Best regards,
Oliver