Skip to content

Commit ae743e0

Browse files
takashiddjanine-c
andauthored
add newly required app roles to CSM docs (#29924)
Co-authored-by: Janine Chan <64388808+janine-c@users.noreply.github.com>
1 parent 210dcce commit ae743e0

File tree

1 file changed

+13
-1
lines changed

1 file changed

+13
-1
lines changed

layouts/shortcodes/csm-setup-azure.en.md

Lines changed: 13 additions & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -2,7 +2,19 @@
22

33
If you haven't already, set up the [Microsoft Azure integration][1].
44

5-
**Note**: To access the full set of Azure compliance rules—including [Identity Risks][5]—you must enable the `Application.Read.All`, `Directory.Read.All`, `Group.Read.All`, `Policy.Read.All`, and `User.Read.All` permissions for the [Microsoft Graph API][2].
5+
**Note**: To access the full set of Azure compliance rules—including [Identity Risks][5]—you must enable the following permissions for the [Microsoft Graph API][2].
6+
7+
- `AuditLog.Read.All`
8+
- `AdministrativeUnit.Read.All`
9+
- `Application.Read.All`
10+
- `Directory.Read.All`
11+
- `Domain.Read.All`
12+
- `Group.Read.All`
13+
- `Policy.Read.All`
14+
- `PrivilegedAssignmentSchedule.Read.AzureADGroup`
15+
- `PrivilegedEligibilitySchedule.Read.AzureADGroup`
16+
- `RoleManagement.Read.All`
17+
- `User.Read.All`
618

719
### Enable Cloud Security for your Azure subscriptions
820

0 commit comments

Comments
 (0)