Trying to get administrator consent for Microsoft Graph API access

2
votes

I'm following this guide: https://docs.microsoft.com/en-gb/graph/auth-v2-service

under step 3, when I try to enter:

https://login.microsoftonline.com/common/adminconsent?client_id=xxx&state=12345&redirect_uri=https://login.microsoftonline.com/common/oauth2/nativeclient

into the browser in order to get admin consent, Microsoft returns:

"AADSTS500201: We are unable to issue tokens from this API version for a Microsoft account. Please contact the application vendor as they need to use version 2.0 of the protocol to support this."

instead of signing me in.

The Grant admin consent button is missing in my view:

enter image description here

I would highly appreciate your response!

Dan

1
httprequestmicrosoft-graph-apiazure-ad-graph-api

1 Answers

2
votes

I didn't reproduce your issue by following this document. Here are the main steps for your reference.

1.Register an application in Azure portal. I noticed that you were using common as the value of tenant parameter. So I registered a multi-tenant application.

enter image description here

2.Add an application permission.

enter image description here

3.Get administrator consent. You can do this at the Azure portal by clicking Grant admin consent button.(See the screenshot in step2). Here I used the same way as yours. Remember to use the tenant admin account to login. Then I can see the consent window.

enter image description here