Sometimes an Azure connector task will fail, and the task log will include a 403 error "failed to write azureAD data: failed to get azure ad groups: invalid response: 403 (403 Forbidden)".
Often, the cause of this error is invalid Azure credentials in runZero.
Some other things to confirm:
Make sure that the configured API permissions are of type "Application" as shown below:
Make sure that you granted consent by using the "Grant admin consent" button.
On the application details, under Authentication > Advanced settings, check that the "Allow public client flows" setting is set to "yes":
Was this article helpful?
That’s Great!
Thank you for your feedback
Sorry! We couldn't be helpful
Thank you for your feedback
Feedback sent
We appreciate your effort and will try to fix the article