Encountered error message when requesting token, may I ask why?

Question

Encountered error message when requesting token, may I ask why?

56gng 20


curl --location 'https://login.microsoftonline.com/common/oauth2/v2.0/token' \
--header 'Content-Type: application/x-www-form-urlencoded' \
--data-urlencode 'client_id=08a4cb27-28c7-4985-a4b9-ff1dee27a655' \
--data-urlencode 'scope=offline_access%20User.Read' \
--data-urlencode 'code=1.AcYAUDbkq9bv9k2NWNgQbgn0YSfLpAjHKIVJpLn_He4nplXGAADGAA.AgABBAIAAADW6jl31mB3T7ugrWTT8pFeAwDs_wUA9P-Xb1SX_ECO5boGELGHwvubvq6zN9ekjntS60yr3yNN0ukT65OZCYR-qAKKvHxkNYvqLf3TWO3ZpHArr4LNwzOve5IThd5qH-2HtUCWH4jXcZLrz0muLy45iicWk7eZUqWRVElpX3n-P8Av_zrSoK96WzRlG3s_MrJ1AooLd1KkT0de8-c_3CQV18ahxQA2bywEd-ft3Q_81Y7vUs16TppYFDgrTh1aNiACbKgO7Q_LJyi2yCMGbrT7ZX53zFNB4ENTjV7uUcLn7NUPMN_iBpbd8L6P9eKv9SfpvPqmYiXxSWvcXsad96X90w80CpHwuqX0VrmohSsU7VutxBXUf0kWSniVwuhDeNjMVDP1gGtknBCppdMS0qu8J5vUkDigb05wNe6XOmaYL8rFuNkFDwTv46BtVibRyHmHN-GOak3yeI5ryjBeezW423Zvz70Aa2nCabX61MTCMIke_CNXW58u-44i0LlrA8569xOHQAPIEJGXxZgOeq47g1eLfO9CjlViYBVjkXoUoOk2uXvLscxEsq4OpV1f2JY1PwDmI8fO1nkEzXaZJK1oTG1heEXu8XXX6hLJOZT6w_blhREBWGep9iopn973kVfgTq1hPnaLvBO3SDky3jnNpIOqH_maVakvnqegosCuQGWo0uv3DU5F9NKoslA34o1x6c1iGQxK-SvqCc__LkVyBb8jeoW9wnL8ifgqkoRlxZGIshptB23ibhlewEndNgBoBk0JBZdkkpv9oC9EVLaopy-xvMW1nSVH11WTrUBWpF1y8e3oDoYAiH2sxKs64mstjIxXaf6mB7P9K1zQWGP_oh98xiCdun4o2Y7r2eFuFdAoX9prLAE-m7ZSscNKjNV7U40CY0O3Au2Ki9C7Wy_8dSRFqMyRHrtY9r_SZxkSd7l_xJ-_iErFsH8m3AvczDOYgYJPWSfbwowdZyuDHx07mYy1Y4Pe8JPTzS27E6PizA3UHtZzV46dIVfULrvFfEiLVPYb_xgbLv1GKPAIQrAjlRNcq0FBfSQPMZv2_lXMDO1WIKUsTxNMIKLk4FXm4UMp1Dw89-GxctuxZY55Z3A2ZcU7dz6L1ePB5RSqFfPEbm5cEDT3wXgwXfYFbKfP2M-QczVLsj6d_RgcwmNqoPNSHjndzh0NEk8gnH3_4Jtd39J9i7Z6HNEti6bwJyCAuisG' \
--data-urlencode 'redirect_uri=http://localhost' \
--data-urlencode 'grant_type=authorization_code' \
--data-urlencode 'client_secret=uYD8Q~auqjTtLsvxEN*****************'

error_description": "AADSTS500202: User account '{EUII Hidden}' is a personal Microsoft account, but the client or resource applications do not have direct Microsoft account support enabled. For external account support use the /organizations or the tenanted endpoint. Trace ID: 53e4e252-9b60-4d76-841c-4fce61547102 Correlation ID: bfe6251b-10dd-4782-b4cd-4b21c5c849dc Timestamp: 2024-11-13 16:55:45Z", enter image description here

0 comments

Answer accepted by question author

Anonymous

Hello 56gng,

Thank you for reaching out to Microsoft Support!

Try changing the value of scope to look like this, that is, %20 to a space

scope=offline_access User.Read

Reference document:

https://learn.microsoft.com/en-us/graph/auth-v2-user?tabs=http

Hope this helps.

If the answer is helpful, please click Accept Answer and kindly upvote it. If you have any further questions about this answer, please click Comment.

56gng 20

Hello sir!

Still not possible, the same error message. I have replaced '% 20' in the scope with a space

curl --location 'https://login.microsoftonline.com/common/oauth2/v2.0/token' \
--header 'Content-Type: application/x-www-form-urlencoded' \
--data-urlencode 'client_id=08a4cb27-28c7-4985-a4b9-ff1dee27a655' \
--data-urlencode 'scope=offline_access User.Read' \
--data-urlencode 'code=1.AcYAUDbkq9bv9k2NWNgQbgn0YSfLpAjHKIVJpLn_He4nplWIAJXGAA.AgABBAIAAADW6jl31mB3T7ugrWTT8pFeAwDs_wUA9P9EZBx7zDYPEDT_v7eWtgaLBg_BEaEK54OQzUDlpF43SUbderG-E78p2KM0w2hfc0rdHwtBFcR9ZKVT9FHSxCN5At78pJwlmlUm-GYuG32vx4udj379ocjkwpBFF04b1o6FBx72qanY7sa8jVI54ErHto3mIqzdR59hPxqmD1Y0TVTjPIldiTbgr3uGrmFKtHH9cDDxEwTeCo8SuWcBWdOpnAnORghqB_ycCvwpXMB61T2O7Fxt5LfiXCYFrQIpSmv04eT2AGvaKnQ-eLCQL0Pqi3Q14EVZoDo2l4zhfDx_xQFNt62QjAnh-PmRI-085fyUSL4ZxLztA4Z6m7jSQdCrlM8KVeYYukt3sgOia3T9l31nfgbpRVV2RoMatH1iEQDRvR67tQUB8tpmuVwbiSzuD3rrZrfSHBp4A-wAiDGrQH8qsdQJRCCugyH85_E6bYm2ONlJE40yd_-9bKa90ft2FNWJSTNwizVcqxL_9iOojMgY62YsHJjC5sVSlciKnlHqXfNSFH-aCi-dmpYh_W-RQcb8ZMoYr2usGa0GxyF6ORGR-WbxElatqnHDRBDE8Cnh--iamVRFiZC7AKQAvcgsF8gkkSfEN2LxlG1Mic1XN3I0xrZaUvf7UvTe4C5ggbrW8Q5hQHJx8rtc4CBz09uFaykk6bUfrZLfXGiYn0gH_YBaTEHVybxcfYqpYZ19vXXq5Ttom1QGaOb912pdNBP-zkwz0KwtFwhCyTlvjC08RKL2klvNhFNm-uOUtzQnecdrMtqe7HHhIhl6qIhamq8XJlL9UOjD0cUF2nqBAlMSACtjawGN1N4qhDb3UOCJMVSFcFR7MdaOWPFLhDXq5HaANpq28NR-VZAx3gghSdmYnOzzjcAqCIrxdtwWWbRgBw5UfHAxoCS1IS_02k4zYbOjvrkSp0fQmBY42KU2BLcjtyHtN5MEGaUf683jPTl6beXzgdBx_NUH_sVuldMYgHSikieEdnLz3qzhdAtOaDhKTyF-t907TRjtdz5HEDAdEpZAbMQhxDA4C9MHBCpDN2kAWTNfmEQ_oSImSo9FowZpyy0NxVBrrDEGSHD-P2ZXNina7odsFz-7NIDuC3dW3vqBU9sd0vZz1qGVn5xRBsX61fpDEwgvLH1v5q3dwxkjKKfhULjlGScNxCRqzW813Uiqail-spNDyAF9HNWPdI0D3RwDMoCuaget5sgJV6oBy0uhsPVPK9shojFGBlgg_CTau60z0oR9MVphj9Jm7DZeY95qcSacDCs5jB13GHgGo2b26L0uSNRFVI9pWApu__97WYZ5JYeoJUH0dMu5zcwQ9hpdUODVanbY-khIUM9Q' \
--data-urlencode 'redirect_uri=http://localhost' \
--data-urlencode 'grant_type=authorization_code' \
--data-urlencode 'client_secret=uYD8Q~auqjTtLsvxENZXC****************'

Snipaste_2024-11-14_21-54-10

1 additional answer

Your answer

Answer 1

56gng 20

Sorry, I found the reason myself. It's because of my own mistake: I didn't change 'code' {tenant} to 'common'

0 comments

Share via

Encountered error message when requesting token, may I ask why?

1 additional answer

Your answer