Not able to make requests to Microsoft Graph API endpoints

A dB 41

I have a simple application in Python that I want to use to schedule and gather attendance information on online meetings using Microsoft Graph API. I made a developer account on Azure and created an enterprise application to access the API. My account has Global Admin privileges and I have granted all the necessary Microsoft Graph API permissions to the application.

I use the MSAL class "ConfidentialClientApplication" to initialize the app with the client id, the authority url (with my tenant id), and the client secret. I am able to retrieve a token that contains the list of permissions I need, but it seems that I do not have the permissions when making the API calls.

All I need is the access to the onlineMeetings and meetingAttendanceReports end points.

CarlZhao-MSFT 40,311 Reputation points

2022-02-10T06:49:24.547+00:00

Hi @A dB

Can you use https://jwt.ms/ to parse your access token and share a screenshot?
A dB 41 Reputation points

2022-02-10T13:52:21.06+00:00

The complete screenshot is below.

Accepted answer

CarlZhao-MSFT 40,311 Reputation points

2022-02-11T02:43:26.647+00:00

Hi @A dB

This is because you didn't create an application access policy, according to the official doc: to use application permission for this API, tenant administrators must create an application access policy and grant it to a user to authorize the app configured in the policy to create online meetings on behalf of that user (with user ID specified in the request path).

If the answer is helpful, please click "Accept Answer" and kindly upvote it. If you have extra questions about this answer, please click "Comment".
Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.
Please sign in to rate this answer.

1 person found this answer helpful.
CarlZhao-MSFT 40,311 Reputation points

2022-02-15T06:39:11.76+00:00

Hi @A dB Would you please provide us with an update on the status of your issue?

A dB 41 Reputation points

2022-02-15T14:51:23.077+00:00

Thank you I think this is the issue. I have installed the Microsoft Teams powershell modules to add the policy but when I try and log in using my account (Owner permissions in Azure) I get the error 'AADSTS50020' saying that my account does not exist in tenant 'Microsoft Services'.

I created another account within Azure and I am able to log into MS Teams through Powershell, but when I try and create the new policy I get a '404 not found' error.

I am continuing to look into it, please let me know if you have a solution!

CarlZhao-MSFT 40,311 Reputation points

2022-03-01T07:07:36.423+00:00

Sorry, I was OOF some time ago.

Upgrade the microsoft teams powershell module to 3.2.0 which is the latest version.

Connect-MicrosoftTeams #Enter global Administrator account credential and make sure that you see Admin account details in connection output.

Now execute the New-CsApplicationAccessPolicy. New-CsApplicationAccessPolicy -Identity OnlineMeetings-Link -AppIds "applicationID" -Description "description here"

A dB 41 Reputation points

2022-03-02T02:14:08.527+00:00

No worries.

Trying to install the prerelease version gives an error stating that the 'AllowPrerelease' parameter cannot be found, despite having Powershell 5.1.

I created a new Global Admin account for AAD and added it to the application. I am able to log into it using Connect-MicrosoftTeams (outputs my account name, environment as AzureCloud, tenant, and tenant id) but when I try and run the command it gives a 404 error even though I use the proper application id.

Václav Uher 11 Reputation points

2022-03-08T12:36:55.023+00:00

Hi @CarlZhao-MSFT ,

I tried the same commands to create new app policy,

New-CsApplicationAccessPolicy -Identity Teams-policy -AppIds "51c597d9-1969-4b5b-b5e3-xxxxxxxx" -Description "Permissions for Teams plugin"

then I granted the global permissions

Grant-CsApplicationAccessPolicy -PolicyName Teams-policy -Global

and when I run Get-CsApplicationAccessPolicy I can see it created, But when I make the API call to create the meeting I still get the No Application Access Policy found for this app.

I even tried to call the New-CsApplicationAccessPolicy using the app ObjectId which ended up successfuly as well !? But no success with the API call either...

Debarghya Maity 40 Reputation points

2023-11-16T07:57:58.5133333+00:00

Hi @CarlZhao-MSFT,

I did similar steps but I'm facing the same error as Václav Uher.

Still cannot call APIs
Sign in to comment

url = f"https://graph.microsoft.com/v1.0/users/{user_id}/onlineMeetings" online_meeting = { "startDateTime":"2022-03-01T14:30:34.2444915-07:00", "endDateTime": "2022-03-01T15:30:34.2444915-07:00", "subject": "Test Meeting" } # have tried with different dates, same result r = requests.post(url, headers={"Authorization": "Bearer " + token}, json=online_meeting) # token is the token dictionary indexed at 'access_token'

Share via

Not able to make requests to Microsoft Graph API endpoints

1 additional answer