ITDR integration guide
After ITDR has been enabled on your tenant, click My Products > Identity > Settings from the navigation menu to start integrating with Microsoft Entra ID. You must have the Administrator role to perform this setup.
Set up the Entra ID integration
- In Sophos Central, go to Identity > Settings > Integrations.
-
Click Set Up on the EntraID Integration card.
-
Enter a name for the integration and click Next.
-
If you want to enable response actions, select the checkbox. You can also configure response actions later.
-
Click Authorize to be returned to Microsoft's identity provider to grant access.
- Sign in with a user account that lets you grant organization-wide consent for integration with the Entra ID tenant. Then approve the listed permissions to give ITDR access to Entra ID. For more information, see the Microsoft documentation.
- When the consent process is successful, you're returned to Sophos ITDR.
- Click View Identity Risk Posture to return to the ITDR Overview Dashboard.
Note
Depending on the size of your tenant, it may take a few minutes to start seeing data.
Set up response actions
You can optionally follow these steps if you didn't configure the response actions during initial setup:
- In Sophos Central, go to Identity > Settings > Integrations.
- Click Set Up on the Response Actions card.
- Click a currently configured Integration from the menu.
- Click Authorize to be returned to Microsoft's identity provider to grant access.
- Sign in with a user account that lets you grant organization-wide consent for integration with the Entra ID tenant. Then approve the listed permissions to give ITDR access to Entra ID. For more information, see the Microsoft documentation.
- When setup is complete, click Close.
When configured, response actions are available within the Actions menu throughout the Sophos ITDR application.