Rezonate
  • 🏠Home
  • 🚩Platform Tour
    • đŸ‡ģđŸ‡ŗPlatform Dashboard
    • 🆔Identity Analytics
      • đŸĒĒIdentity Centric
      • 🔡Identity By Platform
    • âš ī¸Risks & Threats
      • Highlighted ITDR Capabilities
  • â„šī¸How-to Guides
    • ➕Adding Integrations
    • đŸ¤ĻManage Users
    • 🧑‍đŸ’ŧCustomize Exposures
    • đŸ‘ī¸â€đŸ—¨ī¸Querying & Filtering Data
  • 📐Core Integrations
    • Azure Integration
      • Required Privilegees
      • Update Certificate for Existing Installation
    • Okta Integration
      • Okta Integration -Remediation Supported
    • Google Workspace
      • 1-Click Integration
      • Legacy Integration
    • Google Cloud Integration
    • Zoom Integration
    • DocuSign Integration
    • GitHub Integration
      • GitHub Enterprise Expansion
    • AWS Integration
      • AWS - Required Privileges
      • Log Streaming Integration
    • Salesforce Integration
      • Salesforce - Collected Data & Query Volume
    • JAMF Pro Integration
    • CircleCI Integration
    • Auth0 Integration
    • Cloudflare Integration
    • CrowdStrike Integration
      • Integrating Permissions
    • Slack Integration
    • Workday Integration
    • BambooHR Integration
    • Snowflake Integration
    • LastPass Integration
    • SentinelOne integration
    • SAP Cloud Platform Integration
    • GitLab Integration
    • Oracle NetSuite Integration
    • Atlassian Cloud Integration
    • Zendesk Integration
    • HiBob Integration
    • Microsoft Defender Integration
    • Docusign Integration
    • Mongo Atlas Integration
    • Ping Identity One Integration
    • Generic HRIS Integration
  • 📍Notifications & Alerts
    • Slack Integration
    • HTTP Webhook Integration
      • Webhook Alert Example - Saved Search
      • Webhook Alert Example- ITDR
    • Microsoft Teams Integration
    • Torq Integration
    • Email Integration
    • Splunk Integration
    • Datadog Integration
    • PagerDuty Integration
    • Jira Integration
  • 🆘Troubleshooting & Support
    • Collectors IP Ranges
    • Data Processing
      • AWS
      • Azure Active Directory
      • Azure Cloud
      • Google Workspace
    • SSO Integrations
      • SSO Login - Okta
      • SSO Login - AzureAd
  • 📓Legal & Terms
Powered by GitBook
On this page
  • Read Only Integration
  • Read-Write Integration
  1. Core Integrations
  2. Azure Integration

Required Privilegees

Read Only Integration

For the integration to operate properly, the following read-only privileges are required

Permission
Description

TeamMember.Read.All

List team members

IdentityRiskEvent.Read.All

List identity risk events

AuditLog.Read.All

Read Audit Log

Policy.Read.All

Read Policies

Member.Read.Hidden

List Members

Reports.Read.All

List Reports

Application.Read.All

List Applications

DirectoryRecommendations.Read.All

List Directory Recommendadtions

Organization.Read.All

Read Organization Info

IdentityRiskyUser.Read.All

Read Identity Risks

UserAuthenticationMethod.Read.All

List User Auth Methods

TeamSettings.Read.All

List Team Settings

IdentityProvider.Read.All

List Identity Providers

GroupMember.Read.All

List Group Members

Domain.Read.All

List Domain

RoleManagement.Read.All

List Role Management

ReportSettings.Read.All

List Report Settings

User.Read.All

List Users

Directory.Read.All

List Directory

MailboxSettings.Read

List Mailbox Settings

AdministrativeUnit.Read.All

List Admin Units

Group.Read.All

List Groups

SecurityAlert.Read.All

List Security Alerts

Channel.ReadBasic.All

List Channels

IdentityRiskyServicePrincipal.Read.All

List Identity Risks

Policy.Read.PermissionGrant

List Policies

Read-Write Integration

The Required Privileges are in addition to the read-only permissions to enable response & remediation actions

Permission
Description

User.ReadWrite.All

Allows the app to read and update user profiles without a signed-in user.

User.ManageIdentities.All

Allows the app to read, update, and delete identities that are associated with a user's account, without a signed-in user. This controls the identities users can sign in with.

PreviousAzure IntegrationNextUpdate Certificate for Existing Installation

Last updated 1 year ago

📐