07-03-2018 08:12 AM
MS provided us the same powershell script reported by @all2neat but in our case unfortunately this didn't solve the issue.
Still waiting for MS support. Ticket still open.
09-04-2018 02:28 AM
Basically here a recap of what we have understood from MS.
There are 2 cases:
1. Your AAD is federated with AD
2. Your AAD is not federated
In both cases the app you need to create is of type native with PBI delegated permissions consented by an AAD admin. Web/Api Apps type seem not working anymore.
For case 1 there is no way to retrieve the token if you don't use the ADAL library or, if you can't use it and want/need to use the OATH2 password workflow you are forced to define a master account user that is of type AAD User and is not federated.
For case 2 if you do not use ADAL, running the scripts MS suggested and is reported in this thread solves the issue.
Hope this helps.