-
Installation Guides
-
Admin Guides
-
User Guides
- Articles coming soon
-
References
Print
Azure AD Application Required Permissions
Copy the URL link to this section to share
Below are all of the permissions required to be configured on the BI for Defender Azure AD App Registration. See Create Azure AD App Registration for more information.
Prerequisites: The user configuring these permissions requires Global Admin and Subscription Admin rights.
1
Required for basic functionality:
- API:
Microsoft Graph - Permission Type:
Application - Permissions:
SecurityEvents.Read.All
SecurityAlert.Read.All
SecurityIncident.Read.All
ThreatHunting.Read.All
Directory.Read.All
- API:
WindowsDefenderATP - Permission Type:
Application - Permissions:
Security.Recommendation.Read.All
Software.Read.All
Vulnerability.Read.All