Share via

410 issue when accessing to scope user.read.

Raül Cavaller 0 Reputation points
2024-10-02T14:45:43.2966667+00:00

We have an oauth2 token for one application. When I am trying to access to the scope user.red, I get error 410 depending on the account. Which permissions should I check?

I did several tests and it looks like all is correct. The account which doesn't work is adminstrator. And comparing with the other account, it looks like all the permissions are the same.

At the beginning any of both worked. However, after activating the 2-steps verification in all the accouts, one of them was fixed, but not the other.

Microsoft Security | Microsoft Entra | Microsoft Entra ID

1 answer

Sort by: Most helpful
Most helpful Newest Oldest
  1. James Hamil 27,221 Reputation points Microsoft Employee Moderator
    2024-10-03T18:39:17.7133333+00:00

    Hi @Raül Cavaller ,error 410 can indicate that the user has revoked the authorization for the application to access the requested scope. To access the user.read scope, the application needs to have the User.Read permission in the Microsoft Graph API. You can check the permissions of your application in the Azure portal. If the permission is not listed, you can add it. If the permission is already listed, you should check if the user account has granted consent for the application to access the User.Read permission. If not, you can grant it. If the user has revoked the authorization, they need to grant consent again.

    Please let me know if you have any questions and I can help you further.

    If this answer helps you please mark "Accept Answer" so other users can reference it.

    Thank you,

    James

    0 comments

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.