This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(262.40000000000003, 70%, 35%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ES%3C/text%3E%3C/svg%3E)
Hi All,
I am trying to hit the Graph API EndPoint but its giving me below error. Do you think anything is missing. I tried it from Postman. First call is to fetch the token and second call to fetch user details
{
"error": {
"code": "Authorization_RequestDenied",
"message": "Insufficient privileges to complete the operation.",
"innerError": {
"date": "2021-09-02T04:10:16",
"request-id": "4e9482f0-6148-4097-9fe6-a1587f8ebf3f",
"client-request-id": "4e9482f0-6148-4097-9fe6-a1587f8ebf3f"
}
}
}
EndPoint to fetch user - https://graph.microsoft.com/v1.0/users/******@myCompany.com
Hi @JosephXu-MSFT - I have pasted the token and here is what I got in response. I do not see roles or spc in it. I have changed someone of the values in it to avoid any issues.
{
"typ": "JWT",
"nonce": "9abcd2zGWzitlRTomilE3UUdInZTXOsXM7y4tS97JAg",
"alg": "RS983",
"x5t": "nOo3ZDrOASRE1jKWhXslHR_KXEg",
"kid": "nOo3ZDrOASRE1jKWhXslHR_KXEg"
}.{
"aud": "https://graph.microsoft.com",
"iss": "https://sts.windows.net/d34b221f-dca9-5ee8-92f8-1215a965d42a/",
"iat": 1630642959,
"nbf": 1630642959,
"exp": 1630646859,
"aio": "E2ZgYDjW6h4uu9d5bk38DOW6+bH3AA==",
"app_displayname": "IT-Token",
"appid": "22d2b80d-11f3-43f3-8f53-3c08a1723zz2",
"appidacr": "1",
"idp": "https://sts.windows.net/d34b221f-dca9-5ee8-92f8-1215a965d42a/",
"idtyp": "app",
"oid": "203991a9-3a4c-416d-9fcb-a0e76d2770ae",
"rh": "0.ATEAHyJL09SsRE6S-BIVqWXUKg230iLzEfNDj1M8CKFyOqMxAAA.",
"sub": "060771a9-3a4c-416d-9fcb-a0e76d2770ae",
"tenant_region_scope": "EU",
"tid": "d34b221f-dca9-5ee8-92f8-1215a965d42a",
"uti": "cfLwDO238kmUoFakjWFPBB",
"ver": "1.0",
"wids": [
"0977a1d9-0d1d-4acb-b480-d5ca73121e20"
],
"xms_tcdt": 1525893040
}.[Signature]
Hi @JosephXu-MSFT - I have pasted the token and here is what I got in response. I do not see roles or spc in it. I have changed someone of the values in it to avoid any issues.
{
"typ": "JWT",
"nonce": "9abcd2zGWzitlRTomilE3UUdInZTXOsXM7y4tS97JAg",
"alg": "RS983",
"x5t": "nOo3ZDrOASRE1jKWhXslHR_KXEg",
"kid": "nOo3ZDrOASRE1jKWhXslHR_KXEg"
}.{
"aud": "https://graph.microsoft.com",
"iss": "https://sts.windows.net/d34b221f-dca9-5ee8-92f8-1215a965d42a/",
"iat": 1630642959,
"nbf": 1630642959,
"exp": 1630646859,
"aio": "E2ZgYDjW6h4uu9d5bk38DOW6+bH3AA==",
"app_displayname": "IT-Token",
"appid": "22d2b80d-11f3-43f3-8f53-3c08a1723zz2",
"appidacr": "1",
"idp": "https://sts.windows.net/d34b221f-dca9-5ee8-92f8-1215a965d42a/",
"idtyp": "app",
"oid": "203991a9-3a4c-416d-9fcb-a0e76d2770ae",
"rh": "0.ATEAHyJL09SsRE6S-BIVqWXUKg230iLzEfNDj1M8CKFyOqMxAAA.",
"sub": "060771a9-3a4c-416d-9fcb-a0e76d2770ae",
"tenant_region_scope": "EU",
"tid": "d34b221f-dca9-5ee8-92f8-1215a965d42a",
"uti": "cfLwDO238kmUoFakjWFPBB",
"ver": "1.0",
"wids": [
"0977a1d9-0d1d-4acb-b480-d5ca73121e20"
],
"xms_tcdt": 1525893040
}.[Signature]
Hi @JosephXu-MSFT - I have pasted the token and here is what I got in response. I do not see roles or spc in it. I have changed someone of the values in it to avoid any issues.
{
"typ": "JWT",
"nonce": "9abcd2zGWzitlRTomilE3UUdInZTXOsXM7y4tS97JAg",
"alg": "RS983",
"x5t": "nOo3ZDrOASRE1jKWhXslHR_KXEg",
"kid": "nOo3ZDrOASRE1jKWhXslHR_KXEg"
}.{
"aud": "https://graph.microsoft.com",
"iss": "https://sts.windows.net/d34b221f-dca9-5ee8-92f8-1215a965d42a/",
"iat": 1630642959,
"nbf": 1630642959,
"exp": 1630646859,
"aio": "E2ZgYDjW6h4uu9d5bk38DOW6+bH3AA==",
"app_displayname": "IT-Token",
"appid": "22d2b80d-11f3-43f3-8f53-3c08a1723zz2",
"appidacr": "1",
"idp": "https://sts.windows.net/d34b221f-dca9-5ee8-92f8-1215a965d42a/",
"idtyp": "app",
"oid": "203991a9-3a4c-416d-9fcb-a0e76d2770ae",
"rh": "0.ATEAHyJL09SsRE6S-BIVqWXUKg230iLzEfNDj1M8CKFyOqMxAAA.",
"sub": "060771a9-3a4c-416d-9fcb-a0e76d2770ae",
"tenant_region_scope": "EU",
"tid": "d34b221f-dca9-5ee8-92f8-1215a965d42a",
"uti": "cfLwDO238kmUoFakjWFPBB",
"ver": "1.0",
"wids": [
"0977a1d9-0d1d-4acb-b480-d5ca73121e20"
],
"xms_tcdt": 1525893040
}.[Signature]
Hi @JosephXu-MSFT - I have pasted the token and here is what I got in response. I do not see roles or spc in it. I have changed someone of the values in it to avoid any issues.
{
"typ": "JWT",
"nonce": "9abcd2zGWzitlRTomilE3UUdInZTXOsXM7y4tS97JAg",
"alg": "RS983",
"x5t": "nOo3ZDrOASRE1jKWhXslHR_KXEg",
"kid": "nOo3ZDrOASRE1jKWhXslHR_KXEg"
}.{
"aud": "https://graph.microsoft.com",
"iss": "https://sts.windows.net/d34b221f-dca9-5ee8-92f8-1215a965d42a/",
"iat": 1630642959,
"nbf": 1630642959,
"exp": 1630646859,
"aio": "E2ZgYDjW6h4uu9d5bk38DOW6+bH3AA==",
"app_displayname": "IT-Token",
"appid": "22d2b80d-11f3-43f3-8f53-3c08a1723zz2",
"appidacr": "1",
"idp": "https://sts.windows.net/d34b221f-dca9-5ee8-92f8-1215a965d42a/",
"idtyp": "app",
"oid": "203991a9-3a4c-416d-9fcb-a0e76d2770ae",
"rh": "0.ATEAHyJL09SsRE6S-BIVqWXUKg230iLzEfNDj1M8CKFyOqMxAAA.",
"sub": "060771a9-3a4c-416d-9fcb-a0e76d2770ae",
"tenant_region_scope": "EU",
"tid": "d34b221f-dca9-5ee8-92f8-1215a965d42a",
"uti": "cfLwDO238kmUoFakjWFPBB",
"ver": "1.0",
"wids": [
"0977a1d9-0d1d-4acb-b480-d5ca73121e20"
],
"xms_tcdt": 1525893040
}.[Signature]
Hi @JosephXu-MSFT - I am getting the token in a right way. Here is the snapshot.
@JosephXu-MSFT - Any help please?
I'm sorry I was offline a few days ago, so my reply was delayed. Could you please new an app registration , then add app permissions and grant Admin consent. Officially recommended using x-www-form-urlencoded to store key-value pairs, as follows show:
