401 Error when creating Microsoft SharePoint OAuth2 API credentials

Mingggggggggggggg · April 7, 2026, 10:48am

Describe the problem/error/question

I can successfully log in via the Microsoft popup. However, upon being redirected back to n8n, I receive the following JSON error: {“status”:“error”,“message”:“Unauthorized”}.

What is the error message?

Microsoft Azure Permissions (for Sharepoint)

offline_access (delegate)
openid (delegate)
User.Read (delegate)
Sites.ReadWrite.All (delegate)
Files.ReadWrite.All (delegate)

Miscellaneous

I tried:

correcting Server Time/Timezone (it was off by 2h, now synced).
Added Sites.ReadWrite.All and Files.ReadWrite.All
Tested in Incognito Mode/Firefox.
Using Tenant ID instead of “common” in the URIs
Other Microsoft nodes (Outlook, Teams) are working fine with the same App Registration. Any ideas why SharePoint specifically fails?

Information on your n8n setup

n8n version: 2.15.0
Database: default: SQLite
n8n EXECUTIONS_PROCESS setting: default: own, main
Running n8n via docker
Operating system: Linux Server Ubuntu 24.04.4 LTS (GNU/Linux 6.8.0-106-generic x86_64)
Access: WebUI via SSH Tunnellocalhost:5678
Variables set: WEBHOOK_URL=http://localhost:5678/, N8N_PORT=5678, N8N_HOST=0.0.0.0
Redirect URI: http://localhost:5678/rest/oauth2-credential/callback

Benjamin_Behrens · April 7, 2026, 11:04am

have you tried deleting the sharepoint credential and recreating it fresh? sometimes the auth token gets into a weird state after updates and a full credential reset fixes it. also make sure your app registration in azure has sites.readwrite.all and files.readwrite.all under “API permissions” — don’t just request them, you need to grant admin consent.

Mingggggggggggggg · April 7, 2026, 11:12am

The permissions have been granted by an admin. I deleted and recreated the sharepoint credentials but the issue still persists

Rizlan_Ahmed · April 7, 2026, 11:31am

This usually isn’t a SharePoint permission issue. It looks like an n8n OAuth callback/base-URL issue.

What fixed it for most similar cases:

Don’t use the generic OAuth2 API credential for SharePoint. Use Microsoft SharePoint or Microsoft Graph credential in n8n.
Don’t keep WEBHOOK_URL=http://localhost:5678/ for this. Set a real public/editor URL and make both match:
- N8N_EDITOR_BASE_URL=https://your-domain
- WEBHOOK_URL=https://your-domain/
- N8N_PROXY_HOPS=1
In Azure App Registration, set Redirect URI to exactly:
- https://your-domain/rest/oauth2-credential/callback
Restart n8n, delete the old credential, and create a fresh one.

Reason: the Microsoft popup can succeed, but n8n returns {"status":"error","message":"Unauthorized"} when the callback URL/editor session doesn’t match what n8n expects.

If you’re only accessing n8n via SSH tunnel on localhost:5678, that is very likely the root cause.

Anshul_Namdev · April 7, 2026, 12:59pm

Hi @Mingggggggggggggg Welcome!
Try installing NGROK, once done get yourself a URL live at LOCALHOST:5678 and once that is live run n8n if you are using NPM else configure your webhook URL to the given NGROK URL, and when you will start n8n you will get yourself a LIVE publicly available URL which you can enter in the redirect URL and work with it, as localHost is not reachable for their i mean sharepoint’s end. Follow this:

Mingggggggggggggg · April 8, 2026, 7:33am

I already used the Microsoft Sharepoint OAuth2 API and it didnt seem to be the issue but in general I think you were right. Authentification through an SSH Tunnel to localhost seems to be the culprit might as well be the lack of HTTPS but I am not sure.
I got to fix it by setting up Caddy as a reverse proxy and enabling https in n8n.

system · April 15, 2026, 7:34am

This topic was automatically closed 7 days after the last reply. New replies are no longer allowed.