# Azure Groups Integration {% hint style="warning" %} **Attention:** Before you connect **Azure Groups**, please make sure that you have already completed the [**Entra ID integration**](https://docs.en.theblockbrain.ai/for-admins/classic-microsoft-integrations/entra-id-integration)**!** {% endhint %} ## 1. **Create a New Sites Admin App** Go to the Overview page and obtain the **`Application (client) ID`** and **`Directory (tenant) ID`**. \ Save this information in a text file.

## **2. Grant Graph API Permission** 1. Navigate to **`API permission`** and **`+ Add a permission`** there. Use the **`Application permission`** option there.

Always use application permissions instead of delegated permissions

2. In the Sites Admin App Registration, grant Graph API permissions for **`User.Read.All`**, **`Group.Read.All`**, **`GroupMember.Read.All`**

Azure group access will always need User.Read.All rights (User.Read only will not work)

3. With admin rights, click the **`Grant admin consent`** link to approve the permissions.

## 3. Create a Client Secret Key 1. Navigate to the **`Certificates & Secrets`** page to create client secrets.

2. Copy the **Secret Key Value** (NOT the Secret ID) to the text file containing the Client ID and Tenant ID.

3. Your text file should now include

Client Id: 4dbceba4-*******-960918801231
Client Secret: JPz******************
Directory (tenant) ID: cef6ac5c-7bc6-*****-fdf0

## 4. Set up the Azure Groups Integration 1. Inside of the Admin Integration Section on Blockbrain, provide the **`Client ID`**, **`Secret Key Value`, `Tenant ID`** of the Target Application, and a list of selected sites to connect to the Knowledge Bots platform.

## 5. Sync your Azure Groups 1. In the Admin Groups Section on Blockbrain, use the **`Sync Azure Group`** Button to manually sync your groups from Azure.