Error getting Microsoft Entra Id (AAD) Token using ADF - 404 : NotFound
I'm trying to get an AAD token so that I can use in another Web activity to refresh PBI datasets.
However, I'm getting this error when trying to get an AAD Token:.
Invoking endpoint failed with HttpStatusCode - '404 : NotFound', message - 'The requested endpoint(url) does not exist on the server. Please verify the request server and retry.'
This is what the Web Activity looks like.
The URL is:
https://login.microsoftonline.com/@{pipeline().globalParameters.TenantId}/oauth2/v2.0/token'
The Body is:
@concat(
'grant_type=client_credentials'
,'&resource=https://graph.microsoft.com/.default'
,'&client_id='
,activity('Get SP ClientId').output.value
,'&client_secret='
,encodeUriComponent(activity('Get SP Secret').output.value)
)
I've tried https://analysis.windows.net/powerbi/api for the Resource and I still get the same error.
The input for the Web Activity looks like this:
{
"method": "POST",
"headers": {
"Content-Type": "application/x-www-form-urlencoded"
},
"url": "https://login.microsoftonline.com/<tenant id>/oauth2/v2.0/token'",
"body": "grant_type=client_credentials&resource=https://graph.microsoft.com/.default&client_id=<client id>&client_secret=<client secret>"
}
The error occurred as your URL includes one extra quote and you are using resource parameter with v2.0 token endpoint.
Initially, I too got same error when I tried to get access token by passing same values as you:
To resolve the error, you need to use below modified parameters:
URL: https://login.microsoftonline.com/tenantId/oauth2/v2.0/token
Method: POST
Body:
@concat(
'grant_type=client_credentials'
,'&scope=https://graph.microsoft.com/.default'
,'&client_id='
,activity('Get SP ClientId').output.value
,'&client_secret='
,encodeUriComponent(activity('Get SP Secret').output.value)
)
Input:
Output:
Note that, this token will only work to call Microsoft Graph API as the
scopeis https://graph.microsoft.com/.default.
To get access token for Power BI, you need to change your scope value by modifying Body like this:
@concat(
'grant_type=client_credentials'
,'&scope=https://analysis.windows.net/powerbi/api/.default'
,'&client_id='
,activity('Get SP ClientId').output.value
,'&client_secret='
,encodeUriComponent(activity('Get SP Secret').output.value)
)
Input:
Output:
You can now use this access token to make requests to Power BI API.
- Getting a token from Microsoft Intra ID with PostMan using MFA
- MSAL for non-SPA? Server side authentication?
- Error 403 User not authorized when trying to access Azure Databricks API through Active Directory
- Add Azure Active Directory User to Azure SQL Database
- How to use stored procedure parameters as dynamic content in copy activity using ADF
- Azure AD B2C error AADB2C90057 when I am NOT trying to use the implicit flow
- “That Microsoft account doesn’t exist” for Microsoft logins on Auth0
- You don’t have authorization to perform action 'Microsoft.Resources/deployments/validate/action'
- .Net Core - Use AzureAD/EntraID Authentication to Access Azure DevOps REST APIs
- Issue with Azure Automation Account and Key Vault Certificate Retrieval
- OpenAI remove key access while using AAD authentication
- Azure Tenant setup for .NET Blazor WASM calling Web API + Microsoft Graph
- Add tenant specific roles in Azure AD multitenant app
- Allow App Service to be called by just a test user and another App Service using a system assigned managed identity
- How to automatically refresh access token
- Access Token Issuer from Azure AD is sts.windows.net Instead Of login.microsoftonline.com
- How to get user's attributes from Identity in Blazor Server with organization authentication
- Correlation failed in net.core / asp.net identity / openid connect
- I'm unable to Login to VM with Azure AD user credentials
- I need to add co-organizer in teams meeting through graph api
- Entra ID - Adding actor claim to the token via client credential flow
- Roles for a SPA and API setup in Microsoft Intra ID
- Unable to patch businessPhones of Entra External ID user, Insufficient privileges to complete the operation
- How to create dynamic groups in AzureAD/EntraID from a csv import?
- Creating a user in Azure AD B2C through Microsoft SSO
- Azured AD JWT authentication doesn't work for Web API hosted in docker using TestContainer
- How do I connect locally to Azure SQL database with Microsoft Entra ID registered app in C#?
- How to fix 'Unable to Obtain Authentication Token' in Active Directory Authentication to Azure Analysis Server
- Error OrganizationFromTenantGuidNotFound and 401 Unauthorized when Sending Email via Microsoft Graph API in React App
- Fetch employee id from from job description properties .NET 8