Access
A family of Microsoft relational database management systems designed for ease of use.
333 questions
Access has been blocked by Conditional Access policies
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(67.2, 82%, 16%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EHY%3C/text%3E%3C/svg%3E)
Holly Y L HE
0
Reputation points
Hi, We can successfully call the login URL below in our local to get token. But while we run the same curl with same tenant id, client id, client secret in our GCP cloud container platform, we got error AADSTS53003: Access has been blocked by Conditional Access policies. Can you help?
curl --location --request GET 'https://login.microsoftonline.com/<TENANT ID>/oauth2/v2.0/token'
--header 'Content-Type: application/x-www-form-urlencoded'
--data-urlencode 'client_id=xxx'
--data-urlencode 'client_secret=xxx'
--data-urlencode 'grant_type=client_credentials'
--data-urlencode 'scope=https://org46f6c216.crm5.dynamics.com/.default'
ERROR:
{"error":"invalid_grant","error_description":"AADSTS53003: Access has been blocked by Conditional Access policies. The access policy does not allow token issuance. Trace ID: ecdfed35-200f-4348-a45a-1a5f2bbf4400 Correlation ID: 519e42fd-067d-4cb1-bb66-66947cf277ab Timestamp: 2024-02-23 02:23:19Z","error_codes":[53003],"timestamp":"2024-02-23 02:23:19Z","trace_id":"ecdfed35-200f-4348-a45a-1a5f2bbf4400","correlation_id":"519e42fd-067d-4cb1-bb66-66947cf277ab","error_uri":"https://login.microsoftonline.com/error?code=53003","suberror":"message_only","claims":"{"access_token":{"capolids":{"essential":true,"values":["75dcd255-50a9-4c8a-ab9f-b9ef773dacfe"]}}}"}