AutoFlow Companion – Daily Tasks – Authorized

Authorization Confirmation

Thank you for authorizing the M365 Management Application. This application works in conjunction with Microsoft Forms and Power Automate in your tenant to streamline M365 management operations.

Permissions Granted

This application follows the Principle of Least Privilege (PoLP), requesting only the minimum permissions necessary for its intended functions:

  • User management (User.ReadWrite.All)
  • Group membership management (GroupMember.ReadWrite.All)
  • Exchange recipient management via “Exchange – PoLP L1” role group

Required Manual Configuration

To complete the setup, please assign this application to the “Exchange – PoLP L1” role group. This role group provides the necessary “Mail Recipients” management permissions while maintaining the principle of least privilege.

How This Works

  1. The application integrates with your Microsoft Forms and Power Automate workflows
  2. All operations are logged and traceable
  3. Changes are executed only when requested through your authorized Forms
  4. Your IT team maintains full control over the application’s access

Managing Access

You can revoke access at any time through any of these methods:

  1. Azure Portal:
  • Go to Azure Active Directory → Enterprise Applications
  • Locate this application and select “Delete”
  1. Exchange Admin Center:
  • Remove the application from the “Exchange – PoLP L1” role group
  1. Microsoft Admin Center:
  • Go to Azure Active Directory → App Registrations
  • Locate and delete the application registration

Questions or Concerns?

If you have any questions about these permissions or need assistance, please contact us.

Your security is our priority. Thank you for your trust in our services.