MICROSOFT 365 Security Inspector (BETA)
- 1 M365 Audit - Overview
- 2 Getting Started - Application Thumbprint Certificate
- 3 M365 Audit - Setup in Azure Portal
- 4 Generate Client Secret
- 5 Configure API Permissions
- 6 Assign Roles in Microsoft Entra Roles and Administrators
- 7 M365 Audit - Setup in ConnectSecure
- 7.1 Credentials
- 7.2 Company Mapping
- 8 Start M365 Sync
- 9 Microsoft 365 Security Inspection Dashboard
- 10 Microsoft 365 Security Inspection Items
- 11 Need Support?
M365 Audit - Overview
The Microsoft 365 Security Inspection Report provides a comprehensive overview of the security posture within the Microsoft 365 environment. It evaluates various security controls, identifies vulnerabilities, and offers recommendations to enhance security measures, ensuring robust protection against potential threats and breaches.
Getting Started - Application Thumbprint Certificate
Before you begin the setups below, you must download the Certificate for Application Thumbprint.
Login to the ConnectSecure portal.
Navigate to Global > Settings > Integrations > Microsoft 365 Security Inspector.
Scroll down and tap the Download Certificate; this will be uploaded directly in the Azure Portal next.
M365 Audit - Setup in Azure Portal
Log in to the Azure portal (portal.azure.com).
Tap on the ‘App registrations’ option in Azure services (or use the Search).
Tap on the ‘New registration’ option.
Complete the required fields.
Name = Give this app reg a name of your choice (IE: ConnectSecure_M365_Audit)
Support Account Type = Single Tenant
Redirect URI = Set the platform to Web and use: https://authccns.mycybercns.com
Tap on Register to complete
Record the Application (client) ID and Directory (Tenant ID) values from the screen.
Generate Client Secret
Click on the ‘Add a certificate or secret’ link from the Client credentials section.
Tap on ‘New client secret’.
Set the client secret required fields for Description and Expires, then tap Add.
Copy the Value generated and store it; this will be used in the ConnectSecure portal setup.
Tap on the Certificates option.
Tap on ‘Upload certificate’.
Select the application thumbprint certificate you downloaded at the beginning steps and give it a description (IE: ConnectSecure_M365_Audit), then tap Add.
After the upload, you will see the Thumbprint value; record this for use in ConnectSecure.
Configure API Permissions
Under the Manage section, tap on the Manifest option.
Download the JSON file.
We have two options to choose from. The second option has a limited scope that aligns with best practices for readers with the least privileged access.
CS_Global_Admin contains global admin permissions.
CS_Security_Reader contains limited security reader permissions (may permit full scan findings).
In the ‘Microsoft Graph App Manifest (New) file, replace the 'requiredResourceAccess’ section with the copied data.
Tap on the Save button to complete.
Tap on API Permissions from the left panel, then tap the ‘Grant admin consent for…’ button.