Entra Configuration¶
To enable Entra data ingestion, you need to configure the following CLI settings:
--entra-tenant-id
: Your Entra tenant ID--entra-client-id
: The client ID of your Entra application--entra-client-secret-env-var
: The name of an environment variable that contains the client secret of your Entra application.
To set up the Entra client,
Go to App Registrations in the Azure portal
Create a new app registration.
Grant it the following permissions:
AdministrativeUnit.Read.All
Read all administrative units
Type: Application
AppRoleAssignment.ReadWrite.All
Manage app permission grants and app role assignments
Type: Application
Application.Read.All
Read all applications
Type: Application
Directory.Read.All
Read directory data
Type: Application
Group.Read.All
Read all groups
Type: Application
GroupMember.Read.All
Read all group memberships
Type: Application
User.Read.All
Read all users’ full profiles
Type: Application