By Mark Hopper – Program Manager II | Microsoft Endpoint Manager – Intune
Microsoft Intune has the capability to integrate and connect with numerous external services. These connectors can incl...
I've checked the Graph Explorer syntax and I changed it to the Beta version. However, now I run into an authorization error:
{
"error": {
"code": "Forbidden",
"message": "{ \"_version\": 3, \"Message\": \"Application is not authorized to perform this operation. Application must have one of the following scopes: DeviceManagementConfiguration.Read.All, DeviceManagementConfiguration.ReadWrite.All - Operation ID (for customer support): 00000000-0000-0000-0000-000000000000 - Activity ID: 0e44cc44-2b83-5067-9051-bea1cf4d2d36 - Url: https://fef.msub03.manage.microsoft.com/DeviceConfiguration_2107/StatelessDeviceConfigurationFEService/deviceManagement/ndesConnectors?api-version=5021-04-16\", \"CustomApiErrorPhrase\": \"\", \"RetryAfter\": null, \"ErrorSourceService\": \"\", \"HttpHeaders\": \"{}\"}",
"innerError": {
"date": "2021-07-22T05:48:10",
"request-id": "21a0fd34-6c6e-4f6c-b6bf-006b32bd8dd7",
"client-request-id": "0e44cc44-2b83-5067-9051-bea1cf4d2d36"
}
So I checked the API permissions of the App registration:
But these are OK if I compare these to your example (right ?)
EDIT:
I found the cause of the issue. When I looked better on the Graph page there was an option on it to consent permissions. I performed the consent through this specific page and now everything is running fine.