Skip to main content
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Join us at FabCon Vienna from September 15-18, 2025, for the ultimate Fabric, Power BI, SQL, and AI community-led learning event. Save €200 with code FABCOMM. Get registered

Reply
tomaskebrle
New Member

500 UnknownError for Admin endpoint - Users - List Access Entities

yesterday

Hello,

I'm trying to use this admin endpoint - Users List Access Entities. However I'm getting 500 UnkownError, everytime I try to use it. I'm using a service principal to access it and at first I though the error might be that the principal is not authenticated for admin APIs, however after following this guide: https://learn.microsoft.com/en-us/fabric/admin/enable-service-principal-admin-apis I'm still getting the same error. 

 

Has anyone tried to use this endpoint with a service principal and got it working?

Labels:
Message 1 of 2
69 Views
0
1 REPLY 1
v-tsaipranay
Community Support
Community Support

4 hours ago

Hi @tomaskebrle ,

Thank you for reaching out to the Microsoft Fabric Community. 

 

The 500 UnknownError encountered when invoking the Users - List Access Entities admin endpoint with a service principal is likely due to permission or configuration issues. After enabling admin API access according to Microsoft’s documentation, please ensure the service principal has the Fabric Admin role, appropriate API permissions, and admin consent granted. Also, verify that the user ID or UPN you are providing is valid, as an invalid or malformed value can result in a 500 error. Since this endpoint is in preview, occasional instability or limited error messaging may occur. Additionally, Conditional Access policies within your organization could silently block service principal requests, leading to unexplained errors.

For troubleshooting, consider testing the endpoint with an admin user token to determine if the issue is specific to the service principal. Confirm the user ID being used, and utilize tools such as Microsoft Graph Explorer or Azure CLI to review the service principal’s permissions. Reviewing Entra ID (Azure AD) logs may help identify blocked or failed token requests, and testing with Postman or Fiddler can provide further insight from response headers. If the problem persists after these checks, it is advisable to contact Microsoft support and provide the request details, including activity ID and timestamp. 

Microsoft Entra Conditional Access for workload identities - Microsoft Entra ID | Microsoft Learn

 

Hope this helps. Please reach out for further assistance.

If this post helps, then please consider to Accept as the solution to help the other members find it more quickly and a kudos would be appreciated.

 

Thank you.

 

 

 

Message 2 of 2
18 Views
0

Helpful resources

Announcements
Join our Fabric User Panel

Join our Fabric User Panel

This is your chance to engage directly with the engineering team behind Fabric and Power BI. Share your experiences and shape the future.

June FBC25 Carousel

Fabric Monthly Update - June 2025

Check out the June 2025 Fabric update to learn about new features.

June 2025 community update carousel

Fabric Community Update - June 2025

Find out what's new and trending in the Fabric community.

View All