I've read all the previouse posts regarding this topic, but it seems I'm still kinda stuck.
As of now I've registered my App within app registrations in AAD. I've also added a security group and added my app (service principal) as a user and a owner of the security group.
I've added a client secret to the app registration and I'm able to query:
However when I then re-use the accesstoken generated in the response. I get 401:
These are the premissions I've granted the application in Azure:
Any help will be greatly appreciated!