Source

Microsoft Graph API Connection Configuration

To integrate with Microsoft Entra ID (previously Azure AD), an application must be registered with an Entra ID tenant. Once you register the application, you can fill in the Application ID, Directory (tenant) ID, and Application Secret values for the Entra ID Connection Configuration.

1. Login to Azure Portal (portal.azure.com)

2. Select Microsoft Entra ID.

Open

3. Click "Add", then choose "App registration" from the options.

Open

4. Enter the Name, then click "Register"

5. After registration, go to Overview:

• Copy Application (Client) ID.

• Copy Directory (Tenant) ID.

To generate an Application Secret:

• Navigate to Add a certificates or secret.

• Click New Client Secret → Set expiration → Copy the generated secret.

6. Enter the description e.g. "Azure AD Importer for JSM Assets", choose the desired expiration date, and click "Add".

7. Copy the "Value" of the newly created client secret.

8. Select the "API Permissions" menu on the left side, then click "Add a permission".

9- Select “Microsoft Graph” and add Directory.Read.All for the “Application” type.

10. Ask your Azure Admin to provide consent for the required permission. The settings should be as follows:

• Permission: Directory.Read.All

• Type: Application

• Admin Consent Requested: Yes

• Status: Granted for <your organization>

See the example screenshot below:

11. Fill in the required fields under Azure Connection Settings in the Source tab of Azure AD Importer for JSM Assets. Then, click "Save & Check Connection" to confirm the configuration is successful.

12. (Optional) You can apply filters for Users and Groups to reduce the number of imported records and focus on relevant data. For more details, visit: Filter

13. Next configure the Destination settings.