We need to set the permissions for the Azure AD server application to be able to access the users in the Azure AD. Perform the following steps:

1. Select Settings and go to Required permissions:

2. Click on Add and go to Select an API:

3. Select Microsoft Graph:

4. Allow the application to read the AAD data:

5. Under Application Permissions, place a checkmark next to Read directory data:

6. Allow DELEGATED PERMISSIONS so that the application can read directory data on behalf of the user:

7. Under DELEGATED PERMISSIONS, place a checkmark next to Sign in and read user profile and Read directory data: