Whenever I try to create a user from Azure AD spoke. I get this error: " Forbidden Request. Please Check Oauth Token and scope permission."

Roy13
Mega Contributor

‎12-17-2020 05:15 PM

Hello, 

I followed this (https://youtu.be/JOUBcINNF9g) tutorial to setup my Azure AD spoke. but whenever I try to push a user from ServiceNow to Azure Ad it gives me the following error: "Forbidden Request. Please Check Oauth Token and scope permission."

 

Everything that I have created is in the Microsoft Azure AD spoke Scope. And my Oauth token is also valid has anyone else encountered this error before? 

find_real_file.png

Labels:
Preview file
297 KB
0 Helpfuls
  • 5,804 Views
21 REPLIES 21

Sravani36
Tera Expert
In response to rachel_bown1

‎06-17-2022 02:26 AM

Hi, for the above error it's nothing to do from ServiceNow. Inform your Azure team to give some  user.Readwrite.All permissions and some other for the app so that allows you to add this user in the group

0 Helpfuls

Iguana
Tera Contributor

‎03-04-2025 11:07 PM

Hi,

in our case it helped with enabling option "Microsoft Entra roles can be assigned to the group" in Azure.

image (1).jpg

0 Helpfuls