You need an Azure App Registration for EagleEye deployment.

Step 2.1 - Create the App Registration

1. Go to Azure Portal → App registrations → New registration
2. Enter the app name: SSW.EagleEye.Master
3. Set Supported account types to: Accounts in this organizational directory only
4. Click Register

Step 2.2 - Create a Client Secret

1. Go to Certificates & secrets
2. Click New client secret
3. Add a description (e.g., Master Secret)
4. Select an expiry period → Add
5. Copy the secret value immediately (you will need this later; it will never be shown again)

Warning: After deployment, remove the secret value from any temporary notes (clipboard, notepad, etc.).
Do not delete the secret from Azure

Step 2.3 - Configure API Permissions

1. Go to SSW.EagleEye.Master app registration
2. Go to Manage → API permissions → Add a permission
3. Select Microsoft Graph → Application permissions (Important: select Application permissions - not Delegated).
4. Add:
   • Application.ReadWrite.OwnedBy
   • AppRoleAssignment.ReadWrite.All
   • DelegatedPermissionGrant.ReadWrite.All
   • Domain.Read.All
   • Group.Read.All
5. Click Add permissions
6. Click Grant admin consent for your organization.