cancel
Showing results for 
Search instead for 
Did you mean: 
Reply
niklasjegg
Helper V
Helper V

Remove Member from Group permission Error

Hello,

 

i have a Problem in my Powerapps triggered Flow.

 

I am trying to create an App for IT to add or Remove Members from specific Azure AD Security Groups.

 

My Connection is useing a service account. This service account is an Owner of the Azure AD Group.

 

When i am running the Flow from Powerapps everything works fine. The user gets added or removed from the group.

 

When other Users run the Flow from Powerapps the flow return the error at the "Remove Member from Group" Action. 

Insufficient privileges to complete the operation.

"Forbidden" Authorization_RequestDenied

Status Code 403

 

But the Connection Account is indeed the owner of the Azure AD Group.

 

Can someone tell me what the Problem might be? Maybe the user running the flow in Powerapps needs Azure AD permissions?

 

Thank you and best regards

Niklas

1 ACCEPTED SOLUTION

Accepted Solutions
DeepakS
Resident Rockstar
Resident Rockstar

Hi @niklasjegg ,

 

When you trigger flow from Power Apps , it runs under the user account who is running the app. that's the reason when other user using the app you are getting the error because flow is using user account and they may not have enough permission to remove users.

You have tow option:

  1. Give all app user permission to add/remove users
  2. Instead of calling flow directly from app, you should create a SP list where you can add a new item whenever app user want to add/remove users. and trigger your current flow on item creation on this list and run it using services account.

Regards,

Deepak S

View solution in original post

1 REPLY 1
DeepakS
Resident Rockstar
Resident Rockstar

Hi @niklasjegg ,

 

When you trigger flow from Power Apps , it runs under the user account who is running the app. that's the reason when other user using the app you are getting the error because flow is using user account and they may not have enough permission to remove users.

You have tow option:

  1. Give all app user permission to add/remove users
  2. Instead of calling flow directly from app, you should create a SP list where you can add a new item whenever app user want to add/remove users. and trigger your current flow on item creation on this list and run it using services account.

Regards,

Deepak S

Helpful resources

Announcements
Power Platform Conf 2022 768x460.jpg

Join us for Microsoft Power Platform Conference

The first Microsoft-sponsored Power Platform Conference is coming in September. 100+ speakers, 150+ sessions, and what's new and next for Power Platform.

New Ideas Forum MPA.jpg

A new place to submit your Ideas for Power Automate

Announcing a new way to share your feedback with the Power Automate Team.

MPA Virtual Workshop Carousel 768x460.png

Register for a Free Workshop

Learn to digitize and optimize business processes and connect all your applications to share data in real time.

MPA Licensing.jpg

Ask your licensing questions at the Power Automate AMA!

Join Priya Kodukula and the licensing team, super users and MVPs to find answers to your questions on Power Automate licensing.

Users online (4,786)