By Mark Hopper – Program Manager II | Microsoft Endpoint Manager – Intune
Microsoft Intune has the capability to integrate and connect with numerous external services. These connectors can incl...
Updated Dec 01, 2023
Version 12.0
Blog Post
Hi MarkHopper,
Thanks for the reply.
I've checked the Graph Explorer syntax and I changed it to the Beta version. However, now I run into an authorization error:
{
"error": {
"code": "Forbidden",
"message": "{ \"_version\": 3, \"Message\": \"Application is not authorized to perform this operation. Application must have one of the following scopes: DeviceManagementConfiguration.Read.All, DeviceManagementConfiguration.ReadWrite.All - Operation ID (for customer support): 00000000-0000-0000-0000-000000000000 - Activity ID: 0e44cc44-2b83-5067-9051-bea1cf4d2d36 - Url: https://fef.msub03.manage.microsoft.com/DeviceConfiguration_2107/StatelessDeviceConfigurationFEService/deviceManagement/ndesConnectors?api-version=5021-04-16\", \"CustomApiErrorPhrase\": \"\", \"RetryAfter\": null, \"ErrorSourceService\": \"\", \"HttpHeaders\": \"{}\"}",
"innerError": {
"date": "2021-07-22T05:48:10",
"request-id": "21a0fd34-6c6e-4f6c-b6bf-006b32bd8dd7",
"client-request-id": "0e44cc44-2b83-5067-9051-bea1cf4d2d36"
}
So I checked the API permissions of the App registration:
But these are OK if I compare these to your example (right ?)
EDIT:
I found the cause of the issue. When I looked better on the Graph page there was an option on it to consent permissions. I performed the consent through this specific page and now everything is running fine.