cancel
Showing results for 
Search instead for 
Did you mean: 
Reply
DavidGriffith
New Member

403 Error Adding/Removing Users from Groups with Assigned Roles

I am encountering a 403 Forbidden response when attempting to add or remove users to a group that is enabled for assigned roles. My flow works fine with groups that are not role-enabled.

 

I'm using the Azure AD connector, 'Add user to group' function.

 

I am running the flow from a service account which is a Global Administrator. I am able to manually add or remove users to all role-enabled groups, and even with Graph Explorer can add users to role-enabled groups without issue, so I'm not sure if this is simply a limitation or if I'm missing something.

 

Any ideas are appreciated - Thanks!

1 REPLY 1
DavidGriffith
New Member

Further testing shows that when trying to use an HTTP action, this is failing for an Application flow, however the following permissions have been granted:


GroupMember.ReadWrite.All     Application     Read and write all group memberships
GroupMember.ReadWrite.All     Delegated     Read and write all group memberships

 

RoleManagement.ReadWrite.Directory     Application     Read and write directory RBAC settings
RoleManagement.ReadWrite.Directory     Delegated     Read and write directory RBAC settings


*Update: This is working fine from Postman in my testing - I can use Graph Explorer, Postman, etc. but still the action fails using the Azure AD connector

 

 

*Update 2: As a workaround/solution, I'm using HTTP to call Graph API to make the updates. Interestingly the HTTP with Azure AD connector's Invoke an HTTP request action fails - unfortunate as I see this as a cleaner solution. I'll keep this open for now in case anyone can chime in and fill in the missing piece!

Helpful resources

Announcements
Power Platform Conf 2022 768x460.jpg

Join us for Microsoft Power Platform Conference

The first Microsoft-sponsored Power Platform Conference is coming in September. 100+ speakers, 150+ sessions, and what's new and next for Power Platform.

New Ideas Forum MPA.jpg

A new place to submit your Ideas for Power Automate

Announcing a new way to share your feedback with the Power Automate Team.

MPA Virtual Workshop Carousel 768x460.png

Register for a Free Workshop

Learn to digitize and optimize business processes and connect all your applications to share data in real time.

Super User 2 - 2022 Congratulations 768x460.png

Welcome Super Users

The Super User program for 2022- Season 2 has kicked off!

Users online (3,991)