Assigning Directory Permissions for Dynamic Permissioning

Prev Next

Perform the following steps to assign directory permissions for the Britive application created in Azure:

  1. Log in to Azure with administrator privileges. 
  2. Select Microsoft Entra ID
  3. Select App registrations
  4. Select the "Britive" application (that is, the application created in the previous step Registering Britive application in Microsoft Entra ID).
  5. Click API permissions
  6. Click + Add a permission
  7. Select Microsoft Graph. 
  8. Select Application permissions
  9. Select the following permissions:
    • Application- Application.ReadWrite.OwnedBy
    • GroupMember- GroupMember.ReadWrite.All
    • RoleManagement - RoleManagement.ReadWrite.Directory
    • Directory - Directory.Read.All
  10. Click Add permissions
  11. Ensure that the option Grant admin consent for Default Directory is checked.
  12. Select Yes on the warning displayed, whether to grant consent for the required permissions for all accounts in Default Directory. A message is displayed that admin consent has been granted successfully for the requested permissions for all accounts in the default directory.