Help Center
Go back to application
Help Center
Go back to application
Fundamentals
Platform FundamentalsSetting Up Your First CustomerCommunicating Value To Your Customer
How To Setup Connectors
Understanding Data ConnectorsSetting up the Backup Radar ConnectorSetting Up the Cisco CCW ConnectorSetting Up the Cisco Meraki ConnectorSetting up the Cisco PXP ConnectorSetting Up the Corestack ConnectorSetting up the LogicMonitor ConnectorSetting Up the Microsoft Azure Advisor ConnectorSetting Up the Microsoft Entra ConnectorSetting Up the Microsoft Intune ConnectorSetting Up the Microsoft Defender for Endpoint ConnectorSetting up the ServiceNOW CMDB Connector
How To Generate Reports
Insights Report
How To Upload Data
How to Upload True Forward InformationHow to Upload the Cisco Install Base DataHow to Upload the Cisco Inventory Data (Cisco SKUs)

Setting Up the Microsoft Defender for Endpoint Connector

Last Updated: 15 April 2026 by Sanjay Subramaniam

Prerequisites

Before setting up the connector, ensure you have:

  • A Microsoft account with Global Administrator, Cloud Application Administrator, or Application Administrator permissions for your tenant
  • Administrator access to Paratira
  • The ability to approve enterprise applications in your Microsoft tenant

Technical Audience

Experienced IT administrator or cloud engineer responsible for managing Microsoft Defender for Endpoint, with access to a Global Administrator account in Microsoft 365.

Granting Access to Paratira

Unlike other connectors that require you to manually generate API keys, the Microsoft Defender for Endpoint connector uses a streamlined enterprise application approach. You'll simply need to follow a consent URL and approve the requested permissions.

Step 1: Access the Connector Setup in Paratira

  1. Log in to your Paratira account
  2. Navigate to Settings in the left menu
  3. Expand the menu and select Connectors
  4. Click the Add a new connector button

Step 2: Choose the Microsoft Defender for EndpointConnector

  1. In the "Add new connector" wizard, you'll see "Choose connector"
  2. Select the By technology tab
  3. Locate and click on the Microsoft Defender for Endpoint tile select One to One or One to Many
  4. Click Next to proceed to the next step

Step 3: Complete Microsoft Authentication and Consent

  1. Click this link to be redirected to the tenant for approval:
  2. Log into the tenant with an account that has Global Administrator, Cloud Application Administrator, or Application Administrator permission
  3. Click Accept to approve the permission request
  4. Note: All permissions granted are just read-only access

Step 4: Copy the Tenant ID

  1. Click this link to be redirected to the tenant to view your Tenant ID
  2. Sign in with the same Microsoft account you used for the approval process (if required)
  3. The Tenant ID will be presented under Basic Information
  4. Click the double sheets icon to copy the Tenant ID

Step 5: Enter the details in Paratira

  1. Enter the following details to complete the onboarding process in Paratira:
    • Name: Enter a name for the connector e.g. Defender for Endpoint Connector
    • Client ID: Enter the following GUID: 00e8252c-0847-49c6-95d9-c0045d19f13c
    • Client Secret: Enter the secret that was given to you securely by a Paratira admin
  2. Click Add New Mapping
  3. Enter the Tenant ID that you copied earlier and the select the customer that you want to associate the connector with
  4. Click Add
  5. Once all details have been entered a new icon will appear called "Test Connection"
  6. Paratira will load the Validation Results and process the API endpoints associated and validate the data permissions have been configured correctly. This process can take few minutes to complete
  7. Once the permissions are completed click Next to proceed

Step 7: Complete Setup

  1. Review the connector summary information
  2. Click Finish to complete the setup
  3. Your new Microsoft Defender for Endpoint connector will appear in the connectors list
  4. Initial data collection will begin automatically
  5. Note, this app reg can also be used to onboard the Defender for Endpoint Connector

Data Collection Details

he Microsoft Defender for Endpoint connector collects the following information:

  • Service health and status
  • Endpoint update compliance
  • Risk scores and security recommendations

Authentication Details

The Microsoft Defender for Endpoint connector uses OAuth 2.0 for authentication:

  • The consent process creates an OAuth connection between Paratira and your Microsoft tenant
  • Paratira securely stores the authentication tokens and refreshes them automatically
  • No manual token management is required on your part

Troubleshooting

Access Issues

Error: "Insufficient permissions"

  • Solution: Ensure you're using a Global Administrator account for the consent process

Error: "Consent rejected"

  • Solution: Review the permissions again and ensure you understand what access is being granted

Error: "Tenant not found"

  • Solution: Verify you're logged into the correct Microsoft account for your tenant

Post-Connection Problems

Error: "Cannot access Microsoft Defender for Endpointdata"

  • Solution: The enterprise application consent may have expired or been revoked. Try reconnecting

Error: "Limited data available"

  • Solution: Some advanced Defender for Endpointfeatures may require additional Microsoft licenses on your tenant

Best Practices

  • Review Permissions: Carefully review the permissions requested during the consent process
  • Use Least Privilege: If possible, create a dedicated admin account with only the necessary permissions
  • Regular Verification: Periodically verify the Paratira enterprise application still appears in your Microsoft admin center
  • Audit Logs: Review Microsoft Defender for Endpoint audit logs regularly to monitor the connector's activity
  • Tenant Changes: If you make significant changes to your Microsoft tenant, check that the connector is still functioning properly

Support Resources

If you encounter any issues setting up your Microsoft Defender for Endpoint connector:

Should you have any issues, feel free to reach out to: sanjay.subramaniam@raioam.com

Was this article helpful?

Powered by Product Fruits