Share via

Encountering forbidden error when testing endpoint with token

KASUKURTI Monica 20 Reputation points
2025-01-22T13:34:16.0433333+00:00

In continuation with my earlier question titled "Issue Moving File via Microsoft Graph API with Make (Integromat)"

I’ve double-checked that my app ID, client ID, secret, and all related credentials are correct, and I generated a new token to ensure everything is up to date. However, when testing the endpoint with the token, I’m still encountering a “forbidden” error.

here is my app id : 03833527-27a4-4947-9549-1aadbef8be2f and directory tenant : d1625fb5-f06a-4784-ae37-66958ca4eb0e

Could you please assist me in where I might be going wrong?

Azure API Management
Azure API Management
An Azure service that provides a hybrid, multi-cloud management platform for APIs.
2,272 questions
Microsoft Graph
Microsoft Graph
A Microsoft programmability model that exposes REST APIs and client libraries to access data on Microsoft 365 services.
12,887 questions
0 comments

1 answer

Sort by: Most helpful
Most helpful Newest Oldest
  1. Shireesha Eeraboina (Quadrant Resource LLC) 830 Reputation points Microsoft Vendor
    2025-01-23T06:59:57.3933333+00:00

    Hi @KASUKURTI Monica ,

    Welcome to the Microsoft Q&A Platform! Thank you for asking your question here.

    I'm sorry to hear you're having trouble with the Microsoft Graph API. A "forbidden" error usually means that your app doesn't have the necessary permissions. Here are some steps you can take to resolve this issue:

    • Make sure your app has the required permissions for the Microsoft Graph API. You can do this in the Azure Portal by going to "API permissions" under your app's registration.
    • Some permissions need admin approval. Make sure that you or an administrator has granted the necessary permissions in the Azure Portal.
    • Check that the token your app is using includes all the required scopes. You can decode your token to see the scopes it has and ensure they match what’s needed for the endpoint you’re trying to access.
    • Make sure you’re using the right type of token. Some endpoints require application tokens, while others need delegated tokens. Depending on what you’re trying to do, you might need to use the OAuth 2.0 authorization code flow or the client credentials flow.

    Please refer the below thread once:

    https://learn.microsoft.com/en-us/answers/questions/1475985/issue-with-microsoft-graph-api-getting-403-forbidd

    If you find the answer helpful, kindly click "Accept Answer" and upvote it. If you have any further questions or concerns, please feel free to reach out to us. We are happy to assist you.

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.