---
title: Microsoft Defender for Endpoint
url: https://www.tines.com/docs/credentials/connect-flows/microsoft-defender-for-endpoint/
updated: 2025-08-05T17:49:31+00:00
---

*[tines.com](https://www.tines.com/llms.txt) › [Docs](https://www.tines.com/llms.txt) › [Credentials](https://www.tines.com/llm/docs/credentials.md) › [Connect flows](https://www.tines.com/llm/docs/credentials/connect-flows.md)*

# Microsoft Defender for Endpoint

*[View on tines.com](https://www.tines.com/docs/credentials/connect-flows/microsoft-defender-for-endpoint/)*

[Microsoft Defender for Endpoint](https://www.microsoft.com/en-us/security/business/endpoint-security/microsoft-defender-endpoint) is a cloud-based security solution that provides advanced protection against threats by detecting, investigating, and responding to attacks across endpoints through behavioral sensors, analytics, and threat intelligence.


## Connect flow details

| Item | Description |
| --- | --- |
| Credential type | OAuth 2.0 |
| Required inputs | The flow will guide you through the creation of an app. At various steps you will be prompted to enter the following:  
-   Application (client) ID
-   Directory (tenant) ID
-   Client secret value
-   Deployment environment (global or US gov)

 |
| Scopes | This connect flow supports *Application* type permissions. With this type of permission, the app will perform actions as itself rather than impersonating your signed-in user. Do not select *delegated* permissions. All permissions are determined by the user managing the application. |



> **NOTE:** Depending on the permissions chosen and your organizational settings, you may need to obtain admin approval for your app's permissions. Please note the app will not work for actions requiring these permissions until they are granted by your admin