WebTitan

Grant API Permissions

The following permissions need to be granted to DNS Proxy in your Azure portal:

API

Permission

Microsoft Graph

User.Read.All

Microsoft Graph

Group.Read.All

Microsoft Graph

AuditLog.Read.All

Azure Service Management

user_impersonate

Follow the steps below to grant these API permissions.

  1. Go to your Microsoft Azure Portal external_link.png.

  2. From the main portal menu in the top left, select Azure Active Directory.

  3. From the Azure Active Directory page, select App registrations from the left-hand menu.

  4. Click on the DNS Proxy app and the app page displays.

  5. From the DNS Proxy app page, select API permissions from the left-hand menu.

  6. Click WT-AAD-plus-icon.jpgAdd a permission.

    WT-AAD-App-new-API-permissions.jpg
  7. On the Request API Permissions page, click Microsoft Graph.

    WT-AAD-App-MS-Graph.jpg
  8. On the Request API Permissions page, click the Application permissions box.

    WT-AAD-App-application-permissions.jpg
  9. Expand AuditLog and check AuditLog.Read.All.

    WT-AAD-audit-log-permissions.jpg
  10. Expand User and check User.Read.All.

    WT-AAD-user-permissions.jpg
  11. Expand Group and check Group.Read.All.

    WT-AAD-group-permissions.jpg
  12. Click the Add permissions button.

  13. On the Request API Permissions page click Azure Service Management.

    WT-AAD-App-request-API-permissions.jpg
  14. Expand Permissions and check user_impersonation.

    WT-AAD-user-impersonation-permissions.jpg
  15. Click Add permissions.

  16. On the DNS Proxy application > API permissions page, click WT-AAD-check-icon.jpgGrant admin consent.

    WT-AAD-App-API-permissions.jpg