
can't generate a token to authenticate a service principal against Entra ID

I'm following the below documentation to authenticate against Microsoft Translator service with Microsoft Entra ID (Azure AD)

i'm stuck on the step to generate a token

important: key-based authentication is disabled on my translator instance therefore i've followed the docs above to another link to get token:

this seems to be abit outdated as it's using Powershell ADAL module to request a token, however i ran it anyways:

Install-Module -Name ADAL.PS
Import-Module -Name ADAL.PS
$authContext = New-Object "Microsoft.IdentityModel.Clients.ActiveDirectory.AuthenticationContext" -ArgumentList "<TENANT_ID>"
$secureSecretObject = New-Object "Microsoft.IdentityModel.Clients.ActiveDirectory.SecureClientSecret" -ArgumentList $SecureStringPassword   
$clientCredential = New-Object "Microsoft.IdentityModel.Clients.ActiveDirectory.ClientCredential" -ArgumentList $app.ApplicationId, $secureSecretObject
$token=$authContext.AcquireTokenAsync("", $clientCredential).Result

i filled in details with my serviceprincipal which has the roles assigned, yet i get no errors and $token returns empty

can anyone points me in the right direction please?


  • I have one service principal with Cognitive Services User role under Translator resource like this:

    enter image description here

    To generate the access token, make use of below updated PowerShell script:

    $tenantId = "tenantId"
    $clientId = "appId"
    $clientSecret = "secret"
    $resourceUrl = ""
    $tokenEndpoint = "$tenantId/oauth2/token"
    $body = @{
        grant_type    = "client_credentials"
        client_id     = $clientId
        client_secret = $clientSecret
        resource      = $resourceUrl
    $responseToken = Invoke-RestMethod -Uri $tokenEndpoint -Method Post -Body $body
    $accessToken = $responseToken.access_token


    enter image description here

    Now, you can use this access token to call Microsoft Translator API successfully like this:

    $translatorApiUrl = ""
    $headers = @{
        Authorization = "Bearer $accessToken"
        "Content-Type" = "application/json"
    try {
        $response = Invoke-RestMethod -Uri $translatorApiUrl -Method Get -Headers $headers -ErrorAction Stop
        $response | ConvertTo-Json
    catch {
        Write-Host "Error: $($_.Exception.Message)"


    enter image description here

    Reference: Translator Languages Method - Azure AI services | Microsoft