You need to add the service principal you created to an Azure Role.
In this case, Exchange Administrator
The application needs to have the appropriate RBAC roles assigned. Because the apps are provisioned in Azure AD, you can use any of the built-in roles. The following roles are supported: