M
M365Suite DocsGitHub Edition v1.4
Getting Started·2 min read

Granting Admin Consent

To protect your SharePoint navigation configurations, M365Suite requires read-only access to your Microsoft 365 tenant. This is established securely via standard OAuth 2.0 Admin Consent.

Required Permissions (PoLP - Principle of Least Privilege)

All permissions requested are strictly Read-Only:

  1. Sites.Read.All (Microsoft Graph): Allows discovery of SharePoint sites within your tenant.
  2. Sites.Read.All (SharePoint Online): Allows reading structural navigation nodes and settings via REST.
  3. Group.Read.All (Microsoft Graph): Resolves audience groups used in navigation items.
  4. User.Read (Microsoft Graph): Used for single sign-on (SSO) and admin validation.

Setup Instructions

  1. Navigate to the Settings tab in your M365Suite Portal.
  2. Locate the Directory Connection card.
  3. Click Grant Admin Consent.
  4. You will be redirected to the Microsoft Entra authorization page. Sign in using a Global Administrator account and click Accept.
  5. Once redirected, the status badge will update to Connected.