search

microsoft / Intune-Resource-Access

Sample code and scripts for interfacing with the Intune Resource Access APIs.
MIT License
54 stars 58 forks source link

Azure Active Directory Graph >> Microsoft Graph perms mapping issue - Did not find service named 'ScepRequestValidationFEService' listed in Microsoft.Graph #111

Closed appsdesh closed 2 years ago

appsdesh commented 2 years ago

@tynidev I started seeing this issue on a newly created app registration. (Existing apps are working fine)

During this new app registration process, I can't assign Azure Active Directory Graph API permissions to the app as mentioned in the https://docs.microsoft.com/en-us/mem/intune/protect/certificate-authority-add-scep-overview

Screen Shot 2021-09-27 at 10 41 28 AM

I see a depreciation message in the Azure portal for adding API permissions and Azure Active Directory Graph is disabled under Legacy APIs

Screen Shot 2021-09-27 at 10 43 22 AM

This results in an error Did not find service named 'ScepRequestValidationFEService' listed in Microsoft.Graph discovery service list.

Could you please provide info on how do I map Active Directory Graph > Application > ReadAll permissions to a the new Microsoft Graph APIs permissions?

I noticed a similar issue https://github.com/microsoft/Intune-Resource-Access/issues/85 but that was a config issue. My issue persists beyond the resolution workarounds suggested there.

tynidev commented 2 years ago

This is something that we are addressing shortly. The AAD team has deprecated this API and we are updating our library in accordance.