Insufficient privileges for password reset

Question

My goal is to allow users to change and reset their own passwords within my application. We do not want users to be redirected to consent pages.

I\'ve followed the i

Answer 1

I have resolved this after talking to Microsoft.

Turns out that app registrations need a role assigned to them.

1. Install the Azure AD Module - https://docs.microsoft.com/en-us/powershell/msonline/
2. Open a “Microsoft Azure Active Directory Module for Windows PowerShell” command prompt:

$AADCreds = Get-Credential // You will be prompted for your credentials
Import-Module MSOnline Connect-MsolService -Credential $AADCreds Get-MsolServicePrincipal -AppPrincipalId "" // Note: Copy the ObjectId for your Service Principal
Add-MsolRoleMember -RoleName "" -RoleMemberObjectId -RoleMemberType ServicePrincipal

I used "User Account Administrator" for the directory role.