Setup Instructions
Microsoft Defender for Cloud Instructions
Instructions on how to onboard a Microsoft Defender for Cloud Integration
Microsoft Defender for Cloud App
To integrate with Microsoft Defender for Cloud, users will have to authorize Leen’s Microsoft Defender for Cloud app, which is an OAuth2 app. This will allow Leen to access the appropriate Microsoft Defender resources in the organization’s account. Leen takes care of the OAuth2 code-flow and access token management, so you don’t have to worry about it.Onboarding
Follow the steps below to onboard your environment to our Microsoft Defender for Cloud app.1
Create Microsoft Defender for Cloud Connection
With your Leen API Key and your Customer’s Org ID, make a API request to create a new Microsoft Defender for Connection.
More information can be found on the API Reference page.
The response will look like this:
Example POST body and response
Example POST body and response
2
Granting permission to Leen app for Microsoft Defender for Cloud
Open the 
Once the user has authorized the app, they will be redirected to Leen on a successful authorization.
oauth2_authorize_url from the previous step in a new tab.
This will prompt the admin user to authorize Leen’s Microsoft Defender for Cloud app to access their Microsoft Defender resources.
Once the user has authorized the app, they will be redirected to Leen on a successful authorization.
3
Pull Data
Now that the user has authorized the app, you can pull data from Microsoft Defender for Cloud using the
connection_id from the first step.
More information can be found on the API Reference page.