# Azure Entra ## Connection Requirements {% stepper %} {% step %} ### Client ID Your app's unique Client ID (Application ID). You can find it on the overview page for the application in Identity > Applications > Enterprise Applications. {% hint style="info" %} 🔵 **Azure Active Directory**\ Sign into the Microsoft Azure Portal. From the left-hand navigation pane, select . Go to App Registrations and find the application you are using to access the Microsoft Graph API. Click on the application name you want to use. Find API Permissions on left-hand navigation pane. Click on “Add a permission”, then choose “Microsoft Graph”. Select “Application Permissions” and add the necessary permissions. Finally, grant admin consent for those permissions. {% endhint %} Required permissions: * User.Read.All * Device.Read.All * Directory.Read.All {% endstep %} {% step %} ### Client Secret A textual value your app can use to identify itself. It's used to authenticate your app on the tenant architecture. {% endstep %} {% step %} ### Tenant ID Tenant ID of the registered app. You can find it on the overview page for the application under the Basic Information section. {% endstep %} {% step %} ### Proxy URL Proxy URL. (optional) {% endstep %} {% step %} ### Timeout Amount of time that will be waited for API response. (default: 30) {% endstep %} {% step %} ### Users Enrichment To enrich additional user data such as user licenses, sign-in activities, audit logs, and memberOf details, this option must be enabled. {% hint style="info" %} 🔵 **AuditLog.Read.All**\ You have at least these permissions to enable this option: {% endhint %} * AuditLog.Read.All * RoleManagement.Read.Directory * DeviceManagementApps.Read.All * User.ReadBasic.All * Directory.Read.All {% endstep %} {% endstepper %} {% hint style="warning" %} ⚠️ **Attention**\ Please perform a **connection test** to ensure there is a valid connection to the host.\ When the discovery operation is finalized, you will be able to see the details on the **Assets** page. {% endhint %}