Microsoft Graph Api User.Read.All Not granted for my domain

Question

I am getting the following error or status Not granted for my domain. see the attached document
Is this because my role is User?

I tried to find who is Azure AD Global Administrator?

I followed the following steps:

1. Log into the Azure Portal (https://portal.azure.com).
2. Click on Azure Active Directory
3. Click on Roles and administrators
4. Click on Global administrator
5. Under Global administrator it says Microsoft Office 365 Portal

what does it mean?
How can I or someone else in organization become Global administrator?
I want API permissions->User.Read.All Not granted for mydomain

PS: My email is work email.

Update 1
My role is user

Update 2
Global administrator - Assignments say's Microsoft Office 365 Portal is my Admin. How to get these credentials?

Answer 1

I was similiarly frustrated here: it's very hard to spot, however you'll notice that the 'grant admin consent for -' is reset on every update to permissions.

Therefore: simply re-tick this and wait a few seconds for the warnings to disappear.

I too thought I was missing a step elsewhere, very misleading!

Answer 2

For User.Read.All permission you should have Admin Consent which a User cannot avail.

You should have either Global Admin or Application administrator credentials.

Permission Required:

Please refer to this official document Permission details

Admin Credentials:

For Admin credentials details refer to this document

Office 365 Admin Role Assignment:

Hope this will help. Let me know if you have any more concern.