Whenever I try to create a user from Azure AD spoke. I get this error: " Forbidden Request. Please Check Oauth Token and scope permission."

Roy13
Mega Contributor

‎12-17-2020 05:15 PM

Hello, 

I followed this (https://youtu.be/JOUBcINNF9g) tutorial to setup my Azure AD spoke. but whenever I try to push a user from ServiceNow to Azure Ad it gives me the following error: "Forbidden Request. Please Check Oauth Token and scope permission."

 

Everything that I have created is in the Microsoft Azure AD spoke Scope. And my Oauth token is also valid has anyone else encountered this error before? 

find_real_file.png

Labels:
Preview file
297 KB
0 Helpfuls
  • 5,732 Views
21 REPLIES 21

AdrianHolm
Tera Guru

‎03-24-2021 04:12 AM

Hello,

Have you figured the issue in this case? If yes, what did you do? I'm kinda in the same situation with the exact same Error. 

 

Best regards,
Adrian H.

0 Helpfuls

Roy13
Mega Contributor
In response to AdrianHolm

‎03-24-2021 06:54 PM

Hey Adrian, I did figure it out.

My issue was that it was somehow trying to connect to my Personal Azure AD account. What is did was I opened ServiceNow in incognito and when I refreshed the Azure AD connection it prompted me to enter my credentials after which it started working. 

Other possibilities:

1) The other possibility is that you might not have given Admin rights to the ServiceNow app in Azure AD. 

2) Lastly, just have a look at the Oauth token and make sure it is not expired. 

 

0 Helpfuls

AdrianHolm
Tera Guru
In response to Roy13

‎06-11-2021 12:01 AM

Hi Roy,

Sorry for really late response, but by nr. 1 'admin rights' you mean grant admin consent under API permissions, right?

Other than that I've followed the video step-by-step, but still get forbidden username/password. 

 

Best regards,
Adrian H.

0 Helpfuls

Sravani36
Tera Expert

‎04-12-2022 04:08 AM

Hi Facing the same error could you please tell the solution for it.

find_real_file.png

Preview file
20 KB
0 Helpfuls