Skip to content
English
Customer portal
Back to Application
  • There are no suggestions because the search field is empty.

Microsoft 365 Security Review Integration

This guide will help admins configure and integrate Microsoft 365 with Cyberknowledge. Adding this integration will allow users to generate a Microsoft security review assessment report to understand the current security posture of your Microsoft tenancy.

An app registration within Microsoft Entra Admin Centre is used to integrate with Cyberknowledge.

To begin:   

  1. Login to Microsoft Entra Admin Centre
  2. Navigate to App Registrations
  3. Click New Registration
  4. Set the account to the main account
  5. Click Register to create the application
  6. Under the newly created application navigate to API permission > Add a permission
  7. Select Microsoft Graph > Application permissions and set the following permissions:
    1. Application.Read.All
    2. AuditLog.Read.All
    3. Directory.Read.All
    4. Domain.Read.All
    5. IdentityRiskyUser.Read.All
    6. InformationProtectionPolicy.Read.All
    7. MailboxSettings.Read
    8. Organization.Read.All
    9. Policy.Read.All
    10. Policy.Read.AuthenticationMethod
    11. RoleEligibilitySchedule.Read.Directory
    12. RoleManagement.Read.Directory
    13. SecurityEvents.Read.All
    14. SensitivityLabels.Read.All
    15. SharePointTenantSettings.Read.All
    16. TeamSettings.Read.All
    17. User.Read.All
    18. UserAuthenticationMethod.Read.All
  8. Select Grant admin consent for permissions
  9. Navigate to Certificates & secrets
    1. Select New client secret
    2. Set a description
    3. Set the expiry
    4. Click Add
    5. Copy the Value
  10. Cyberknowledge requires the following for the integration
    1. TenantId (found in the overview of the app registration)
    2. clientId (found in the overview of the app registration)
    3. Client Secret (captured in step 9.e)
  11. Login to the Cyberknowledge console
  12. Navigate to Integrations > Integration Gallery
  13. Select Microsoft 365 Security Review Integration
  14. Name the Integration and fill in the details captured from step 10
  15. After the integration is successfully added the integration will become Active but remain will remain in a Pending state until a Salesforce Security Report is Generated through from the Assistant Module.

M365

Please note that the data captured will only be available from the Microsoft 365 Security Review Report that is generated from the Assistant module.

Additionally Cyberknowledge will connect to Microsoft 365 when a report is requested only.