I have created a service principal to be responsible for the Terraform deployment.
Currently this user as the below permissions, but I am still getting 403 when trying to read user or group data from AzureAD provider.
- Application.Read.All - Delegated
- Application.ReadWrite.All - Delegated
- Group.Read.All - Delegated
- Group.ReadWrite.All - Delegated
- User.Read - Delegated
- User.Read.All - Delegated
- User.ReadWrite.All - Delegated
Can someone assist on what might be missing since these permissions are already quite permissive?