# Azure Entra ## Connection Requirements {% stepper %} {% step %} ### Client ID Your app's unique Client ID (Application ID). You can find it on the overview page for the application in Identity > Applications > Enterprise Applications. {% hint style="info" %} 🔵 **Azure Active Directory**\ Sign into the Microsoft Azure Portal. From the left-hand navigation pane, select . Go to App Registrations and find the application you are using to access the Microsoft Graph API. Click on the application name you want to use. Find API Permissions on left-hand navigation pane. Click on “Add a permission”, then choose “Microsoft Graph”. Select “Application Permissions” and add the necessary permissions. Finally, grant admin consent for those permissions. {% endhint %} Required permissions: * User.Read.All * Device.Read.All * Directory.Read.All {% endstep %} {% step %} ### Client Secret A textual value your app can use to identify itself. It's used to authenticate your app on the tenant architecture. {% endstep %} {% step %} ### Tenant ID Tenant ID of the registered app. You can find it on the overview page for the application under the Basic Information section. {% endstep %} {% step %} ### Proxy URL Proxy URL. (optional) {% endstep %} {% step %} ### Timeout Amount of time that will be waited for API response. (default: 30) {% endstep %} {% step %} ### Users Enrichment To enrich additional user data such as user licenses, sign-in activities, audit logs, and memberOf details, this option must be enabled. {% hint style="info" %} 🔵 **AuditLog.Read.All**\ You have at least these permissions to enable this option: {% endhint %} * AuditLog.Read.All * RoleManagement.Read.Directory * DeviceManagementApps.Read.All * User.ReadBasic.All * Directory.Read.All {% endstep %} {% endstepper %} {% hint style="warning" %} ⚠️ **Attention**\ Please perform a **connection test** to ensure there is a valid connection to the host.\ When the discovery operation is finalized, you will be able to see the details on the **Assets** page. {% endhint %} --- # Agent Instructions: Querying This Documentation If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question. Perform an HTTP GET request on the current page URL with the `ask` query parameter: ``` GET https://docs.octoxlabs.com/adapters/adapters/azure-entra.md?ask= ``` The question should be specific, self-contained, and written in natural language. The response will contain a direct answer to the question and relevant excerpts and sources from the documentation. Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.