This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(128, 8%, 22%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EA%3C/text%3E%3C/svg%3E)
Hello,
I try to get information from Intune Graph API about windowsMalwareInformation as described here : https://learn.microsoft.com/en-us/graph/api/intune-devices-windowsmalwareinformation-get?view=graph-rest-beta
I have created an application with correct permissions :
When i query Graph Api, I receive error 403 Forbidden :
Note : token is generated with this method :
$tokenBody = @{
Grant_Type = "client_credentials"
Scope = "https://graph.microsoft.com/.default"
Client_Id = $clientId
Client_Secret = $clientSecret
}
$tokenResponse = Invoke-RestMethod -Uri "https://login.microsoftonline.com/$Tenantid/oauth2/v2.0/token" -Method POST -Body $tokenBody
Did I forget something?
Thanks you for help.
@Anonymous Thanks for posting in our Q&A.
For error 403, it seems that we don't have the enough permissions. "Get windowsMalwareInformation" needs the following permissions:
From the picture about permissions you provided, it misses "DeviceManagementManagedDevices.ReadWrite.All".
Hope it will help.
@Anonymous I am currently standing by for further update from you and would like to know how things are going. If you have any questions or concerns on the recent information I've provided you, please don't hesitate to let me know.
Hi @Lu Dai-MSFT , thanks for your answser, but that does not solve my issue.
When I use this Url "https://graph.microsoft.com/beta/deviceManagement/managedDevices", I can sucessfully request Graph API.
Same App (and permission) and same code is used.
@Anonymous Thanks for your update.
This issue is related to develop scope. With the limitation resource, it is suggested to open an intune premier ticket to get more accurate help. Here is the support link:
https://learn.microsoft.com/en-us/mem/get-support
Hope it will help.