Skip to Content
Getting StartedConnect Microsoft

Connect Microsoft

Patchly connects to your Microsoft environment with read-only API access. Setup takes about 2 minutes — you just need to grant admin consent and share your tenant ID.

Click the link below and sign in with a Global Administrator or Privileged Role Administrator account:

Authorize Patchly for your organization 

Review the permissions and click Accept. That’s it — Patchly is now authorized to read security data from your environment.

Step 2: Share Your Tenant ID

Send your Patchly contact your Directory (tenant) ID:

  1. Go to Azure Portal  > Microsoft Entra ID > Overview
  2. Copy the Tenant ID
  3. Send it to your Patchly contact

Patchly will configure the data sync and let you know when your dashboard is ready — typically within one business day.

What Permissions Does Patchly Request?

All permissions are read-only and application-level (no user impersonation). Patchly never modifies data in your environment.

Microsoft Graph

PermissionWhat it reads
User.Read.AllUser directory for identity context
Device.Read.AllRegistered device inventory
Group.Read.AllSecurity group membership
AuditLog.Read.AllSign-in activity
Directory.Read.AllDirectory data

Microsoft Defender for Endpoint

PermissionWhat it reads
Machine.Read.AllDevice inventory
Vulnerability.Read.AllVulnerability data
Software.Read.AllSoftware inventory
Alert.Read.AllSecurity alerts
SecurityRecommendation.Read.AllSecurity recommendations

What Happens Next?

StepWhatWhen
You grant consentPatchly gets read-only access to your security dataNow
Patchly configures syncYour tenant is added to the nightly data pipelineWithin 1 business day
First sync runsVulnerability, device, and user data are pulledNext scheduled run (02:00 UTC)
Dashboard readyYour Patchly contact sends you the linkAfter first sync completes

See Data Security for how your data is stored and protected, or Data Freshness to understand sync timing.

Last updated on
WelcomeDashboard