Microsoft Graph Send Mail Shared Mailbox Access is denied. Check credentials and try again
Ive registered an Azure AD application with the API permissions of "Mail.Send" and "Mail.Send.Shared".
The intention is to send emails from, and maybe to, a shared mailbox.
When I try to send an email, I get the following error
{
"error": {
"code": "ErrorAccessDenied",
"message": "Access is denied. Check credentials and try again."
}
}
This is what I'm using to the Oauth token
Post
https://login.microsoftonline.com/xxx/oauth2/v2.0/token
and to send the email
Post https://graph.microsoft.com/v1.0/users/<shared mailbox>/sendMail
Body
{
"message": {
"subject": "Can I send emails from Postman?",
"Sender":{
"EmailAddress":{
"Name":"<shared mailbox email address>",
"address":"<shared mailbox email address>"
}
},
"body": {
"contentType": "Text",
"content": "Testing from Postman."
},
"toRecipients": [
{
"emailAddress": {
"address": "[email protected]"
}
}
]
},
"saveToSentItems": "false"
}
Your using the Client_Credentials flow but it looks like your assigning delegate permissions. Mail.Send.Shared is a delegate only permission and Mail.Send is both a delegate and application permission. The only permission you can use in the client credentials flow is the Application permission Mail.Send https://learn.microsoft.com/en-us/graph/permissions-reference#application-permissions-43 eg 
Also even if you are trying to SendAS the Shared mailbox using delegate permission then you don't ever set the Sender you need to use the From Address and Exchange will automatically adjust this depending on the permissions of the mailbox this is explained in https://learn.microsoft.com/en-us/graph/outlook-send-mail-from-other-user
- permission problem with opennms running a nodejs script in notification
- C# - Set Directory Permissions for All Users in Windows 7
- Web API 2 Controller isn't picking up IPrincipal.User.Identity.Name
- Execute a shell script in current shell with sudo permission
- chmod unable to change permissions
- Flutter CLI, ran clean as root user, now I can't run it without sudo
- How to see logs in k8s from another namespace
- Making a gitlab repo read only/give members Guest permissions
- Android 13 not asking for POST_NOTIFICATIONS permission
- How to fetch group calendar events using Azure application-only permissions? Error: Access is denied. Check credentials and try again
- How to get Azure Email Communication Service Connection String
- How to check if user cannot send messages (was restricted or muted) in telegram chat by telethon api?
- Bicep Azure Machine learning custom role assignment
- www-data permissions?
- How to use Compose Accompanist to work with new permissions on old devices?
- Giving View permission to Databricks jobs using CLI or API
- ASP.NET/IIS7.5 Writing Log File Not Working (Permissions, UAC, Config., ???)
- VB6 install fails on Win 10 (21H2)
- Homebrew Permissions for Watchman on Multi-user Mac
- Setting MSMQ permissions for a private queue created by a different user
- Azure DevOps make project read only
- How to open application's location permission settings directly in React Native
- Flutter Geolocator fails to get approximate location
- Schtasks Permission Error on Administrative User?
- Can't run script using PHP's exec(), possible permissions problems
- Android requires user to enable permissions for my app that are already requested in manifest
- What is the crash of "The app's Info.plist must contain an NSPhotoLibraryAddUsageDescription"?
- Target class [Spatie\Permission\Middlewares\RoleMiddleware] does not exist
- chrome.storage is undefined in chrome extension
- How customize permissions in django (not in DRF)?