It looks like the app that you are using to generate the access_token, does not contain report or admin scopes @university
You can share the following post with the Admin so they can enable the proper permissions for the role that is creating the App so they will be able to see the scopes they need.