View detailed instructions to set up the integration here: https://support.freshservice.com/support/solutions/articles/50000003328 Head to your Azure account, and search for Azure Active Directory Select your directory from the list here and click on App registrations Click New Registrations and register a new application here by providing an App Name Once the application has been created, click on Certificates & Secrets option under Manage section. Generate the secret key for the application. Copy the Application (Client) ID and the generated secret key store in a secure location. The newly created application registration should have access to API permissions to list applications, users, and their usage information. This can be enabled under API permissions tab. Click on New Permission → Application Permissions → Graph API and add the following permissions for the app: Application.ReadWrite.All User.ReadWrite.All Group.ReadWrite.All Organization.Read.All Directory.ReadWrite.All If you’re enabling SaaS discovery, you need to add the following permissions in addition to the above: Application.Read.All AuditLog.Read.All Directory.Read.All User.Read User.Read.All Reports.Read.All (Optional - If you plan to integrate the Microsoft 365 integration for SaaS Discovery, adding this permission will allow you to use the same Client ID & Secret to set up the other integration as well) Once all the permissions are added, click on Grant Admin consent for all the permissions. Once you see a green tick against all the permissions, all the permissions are successfully applied.