1. Logsign Support Center
  2. Logsign Unified SecOps Platform
  3. Responses

Microsoft Intune Response Integration via API

Updated

This guide provides step-by-step instructions for obtaining API credentials (Client ID, Tenant ID, Client Secret, and Scope) from Microsoft Entra ID (formerly Azure AD) and configuring them in Logsign USO for seamless integration.

Register an Application in Microsoft Entra ID

To enable API access, you must create an application in Microsoft Entra ID and obtain the necessary credentials.

Access Microsoft Entra ID

1. Open a web browser and navigate to Microsoft Entra Admin Center.

2. Log in using a Microsoft account with administrative privileges.

3. Select Microsoft Entra ID from the left-hand navigation panel.

Register a New Application

  1. Go to Enterprise Applications and click + New registration.
  2. Enter an appropriate Name for the application (e.g., “Logsign USO Integration”).
  3. Under Supported account types, select Singletenant.
  4. The Redirect URI will be configured later.
  5. Click Register to create the application.

Retrieve the Client ID and Tenant ID

After registration, go to the Overview page.

Copy and securely store the following:

Client ID (Application ID)

Tenant ID (Directory ID)

Configure Authentication and API Permissions

Create a Client Secret

1. Navigate to Certificates & secrets.

2. Under Client secrets, click + New client secret.

3. Provide a Description and set an expiration period.

4. Click Add.

5. Copy and securely store the Client Secret, as it cannot be retrieved once the window is closed.

Configure API Permissions

Go to API Permissions and click + Add a permission.

Select Microsoft Graph.

Under Application Permissions, add:

  • DeviceManagementManagedDevices.Read.All
  • DeviceManagementManagedDevices.ReadWrite.All
  • DeviceManagementManagedDevices.PrivilegedOperations.All
  • Device.Read.All
  • DeviceManagementApps.Read.All
  • DeviceManagementConfiguration.Read.All
  • DeviceManagementConfiguration.ReadWrite.All

Click Add permissions.

Click Grant admin consent to approve the requested permissions.

If you are going to call the Graph API on behalf of a user (delegated), you must ensure that the Delegated versions of these permissions and the corresponding user have the required roles on Intune. If the application will work with its own identity (app-only, client credentials), you need to add these permissions as Application and have them approved.

Configure Microsoft Intune in Logsign USO

Once you have obtained the Client ID, Tenant ID, Client Secret, and Scope, follow these steps to configure Logsign USO:

Open Logsign USO

Log in to your Logsign USO platform.

Navigate to Settings

Go to Settings > Responses.

Select Microsoft Intune as the provider.

Enter API Credentials

Fill in the required fields:

  • Client ID → Enter the Client ID obtained from Microsoft Intune.
  • Tenant ID → Enter the Tenant ID obtained from Microsoft Intune.
  • Client Secret → Enter the Client Secret securely stored earlier.
  • Scope → https://graph.microsoft.com/.default
Was this article helpful?
0 out of 0 found this helpful

Articles in this section

See more
Become a Certified Logsign User/Administrator
Sign-up for Logsign Academy and take the courses to learn about Logsign USO Platform in detail. Enjoy the courses, and get your badges and certificates. In these courses, you'll learn how to use Logsign in your work and add value to your career.
Visit Our Blog
Our Logsign USO Platform illustrate our expertise. So do the blog. Through our blog posts, deepen your knowledge on various SecOps topics or get updated about important news & modern approaches for cybersecurity. Get into the habit of reading valuable information provided by Logsign. Be a step ahead.