Skip to main content
All CollectionsInspectorsMicrosoft Cloud
Microsoft Cloud | Entra (Azure AD) Error: Missing API scope(s) found
Microsoft Cloud | Entra (Azure AD) Error: Missing API scope(s) found

Missing API scope(s) found on call for GET /v1.0/identityProtection/riskDetections.

Updated over 11 months ago

If your current GDAP relationship was set up with least privilege and only includes the following Cloud application administrator, Directory writers, Global reader. Reports reader.
โ€‹
Partners will need to re-establish their Partner Center child GDAP relationships and request the following 5 roles, which now includes the Security Reader Role. https://docs.liongard.com/docs/microsoft-cloud-services-inspector#liongard-multi-tenant-setup

  • Cloud application administrator

  • Directory writers

  • Global reader

  • Reports reader

  • Security Reader
    โ€‹

    If your current GDAP relationship was set up with with the roles listed above, then you will need to add the Security Reader role to the Admin Agents Group. Once the updates have been made, you manually rerun your inspector or wait until the next scheduled run

Did this answer your question?