If I use client_credentials as the grant type when requesting an access token from the Concur API, I then get error 500 on subsequent calls to the API if I use the access token that was returned. If I use password or refresh_token as the grant type, then the access token that is returned can be used without error.
There is no explanation in the documentation about what the Client Credentials grant is used for and when to use it.