Hello Andriy S
Welcome to microsoft Q&A, Thankyou for posting your query here.
Ensure that the client_id and client_secret specified in your Prometheus configuration are still valid.
Check the settings in Keycloak for the client to ensure that it is still configured to allow the client_credentials grant type
If you're storing the client_secret in a Kubernetes Secret used by Prometheus, ensure this secret is up-to-date and has been properly propagated to the Prometheus pods.
you should review any changes made to the AKS environment during the period the problem arose like network policies, upgrades to the AKS cluster, or changes to service accounts and RBAC policies.
Make sure the token URL provided in the configuration (https://keycloak-server.my-app.com/realms/MYREALM/protocol/openid-connect/token) is accessible from the Prometheus server
hope this helps you.If an answer has been helpful, please consider accepting the answer to help increase visibility of this question for other members of the Microsoft Q&A community. If not, please let us know what is still needed in the comments so the question can be answered. Thank you for helping to improve Microsoft Q&A!