Steps to modify REST API permissions

Though we suggest providing all the recommended permissions, organizational requirements may not allow this. In this section, you will learn how to modify the REST API permissions for an already configured tenant. If you are looking for a way to configure a tenant with only the permissions you require, please configure it manually.

Prerequisite: The tenant has been successfully configured in M365 Security Plus and REST API is enabled for it.

1. Log in to the Microsoft Entra ID admin center using the credentials of a Global Administrator or any other user account with the permission to create Entra applications.
2. Navigate to Identity > Applications > App registration.
3. Select All applications.



4. Search for the application name from step 7 of the previous section and click it.
5. Select API Permissions under Manage.
6. Choose Microsoft Graph.



7. Click expand all to view all the permissions already granted to this application.
8. Add, remove, or modify permissions as per your requirements.
9. Click Update permissions.



10. Select the Grant admin consent for domain_name option found at the top of the permissions table.
11. Choose Yes in the box that appears.



12. You have now successfully modified the permissions required by the REST API application.

Steps to modify a Microsoft 365 tenant

• Click the Tenant Settings option found in the top-right corner.
• You will see the list of Microsoft 365 tenants configured in M365 Security Plus.
• Under the Actions column, click the corresponding to the tenant you need to modify
• Click the icon adjacent to Application Details to modify the corresponding values.
• Click Update once you have made the changes.