Update Azure Application Permissions

Learn how to update your current permissions in your Azure subscriptions and tenants.
This workflow shows how you can add additional permissions in your Azure subscriptions or tenants after you have onboarded your cloud accounts to Prisma Cloud. To verify if you have missing permissions authenticate into Prisma Cloud and select
Settings
Cloud Accounts
, and view the
Status
column.
  1. Authenticate into Azure portal.
  2. Add the Microsoft Graph APIs.
    1. Navigate to the app you previously registered.
      Select
      Azure Active Directory
      App registrations
      , and select your app.
    2. Navigate to Microsoft Graph.
      Select
      API permissions
      + Add a permission
      Microsoft Graph
      Application permissions
      .
    3. Add the permissions.
      Enter the permission name in
      Select permissions
      , and select the name from
      Permission
      .
      Add the following permissions:
      • User.Read.All
      • Policy.Read.All
      • Group.Read.All
      • GroupMember.Read.All
      • Reports.Read.All
      • Directory.Read.All
      • Domain.Read.All
      • Application.Read.All
  3. Grant admin consent for Default Directory.
    1. Select
      Grant admin consent for Default Directory
      Yes
      .
    2. Verify that the permissions are granted.
      You should see green check marks under the
      Status
      column.

Recommended For You