Symptoms

I generated the token using Resource Owner Password Credentials scheme. However, when I use it further in my REST API calls to Vantage, I get 403 error code.

Cause

Incorrect scopes were used during creating a Client ID and getting a token.

Resolution

Double-check that openid permissions global.wildcard scopes are used while creating a Client ID:

The same scopes must be used while getting a token: