![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(128, 1%, 22%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EAS%3C/text%3E%3C/svg%3E)
Microsoft Security | Microsoft Entra | Microsoft Entra ID
A cloud-based identity and access management service for securing user authentication and resource access
Hello @ABDUL-SHAHIED SHAHID • Thank you for reaching out.
The "Approval reqiured" page is presented to the users in the below cases:
- If the user consent settings are configured to
Allow user consent for apps from verified publishers, for selected permissions (Recommended)but the application is either not from verified publishers or any of the permissions in the authentication request is not added under Azure Active Directory > Enterprise applications > Consent and permissions > Permission classifications under Low (low risk permissions) tab. You can try to set the User consent settings toAllow user consent for appsand see if it works, to confirm the same. - If the delegated permissions require Admin consent only and cannot be consented by the users. However looking at the above screenshot, the scopes being used are
user.read,calendars.read,calendars.read.shared, andoffline_access. I confirmed that none of these scopes require admin consent. I would suggest you validate the authentication request url and check if the scopes parameter contains any other scope than the 4 scopes I mentioned.
Feel free to tag me in your reply if you have any further questions.
-----------------------------------------------------------------------------------------------------------
Please "Accept the answer" if the information helped you. This will help us and others in the community as well.
