Getting Started·2 min read
Granting Admin Consent
To protect your SharePoint navigation configurations, M365Suite requires read-only access to your Microsoft 365 tenant. This is established securely via standard OAuth 2.0 Admin Consent.
Required Permissions (PoLP - Principle of Least Privilege)
All permissions requested are strictly Read-Only:
- Sites.Read.All (Microsoft Graph): Allows discovery of SharePoint sites within your tenant.
- Sites.Read.All (SharePoint Online): Allows reading structural navigation nodes and settings via REST.
- Group.Read.All (Microsoft Graph): Resolves audience groups used in navigation items.
- User.Read (Microsoft Graph): Used for single sign-on (SSO) and admin validation.
Setup Instructions
- Navigate to the Settings tab in your M365Suite Portal.
- Locate the Directory Connection card.
- Click Grant Admin Consent.
- You will be redirected to the Microsoft Entra authorization page. Sign in using a Global Administrator account and click Accept.
- Once redirected, the status badge will update to
Connected.