Microsoft 365 Integration
Chronom's Microsoft 365 integration analyzes your organization's license portfolio to identify optimization opportunities, detect waste, and recommend cost-saving actions.
New to Chronom? Use the guided onboarding wizard for the fastest setup experience.
What Chronom Does with M365 Data
Once connected, Chronom continuously scans your Microsoft 365 environment and provides:
- License Waste Detection — Identifies licenses assigned to users who aren't actively using them
- Cost Optimization — Calculates potential savings by right-sizing license assignments
- Recommendations — Suggests specific actions (downgrade, remove, reassign) for each license
- Compliance Visibility — Tracks license usage across Free, Paid, and Trial tiers
How It Works
Chronom connects to your Microsoft 365 tenant through an Azure App Registration with Microsoft Graph API permissions. This is the same mechanism used for Azure resource scanning, but with additional Graph API permissions for license data.
Prerequisites
- An Azure tenant with Microsoft 365 licenses
- An Azure App Registration with the required Graph API permissions (created during onboarding or manually)
- Admin consent granted for the API permissions
Required Permissions
The App Registration needs the following Microsoft Graph API permissions:
| Permission | Type | Purpose |
|---|---|---|
User.Read | Delegated | Basic user profile access |
Directory.Read.All | Application | Read organizational directory data for license mapping |
Agreement.Read.All | Application | Read organizational agreements |
AuditLog.Read.All | Application | Read audit log data for usage analysis |
Reports.Read.All | Application | Read M365 usage reports for license optimization |
Sites.Read.All | Application | Read SharePoint site utilization data |
TermStore.Read.All | Application | Read term store data |
All permissions are read-only. Chronom cannot modify your M365 configuration, license assignments, or user data.
Setup Options
Option 1: Onboarding Wizard (Recommended)
The onboarding wizard guides you through the entire setup process, including App Registration creation, permission granting, and verification.
Option 2: Manual Setup
If you prefer to set up manually or already have an Azure App Registration for Chronom:
- Follow the Create a New Azure App Registration guide
- Ensure all M365-specific permissions listed above are granted with admin consent
- Connect the tenant through Settings → Azure in Chronom
If you've already connected an Azure tenant for resource scanning, you can add the M365 permissions to the same App Registration — no need to create a separate one.
Next Steps
- M365 License Optimization — Learn how to use the license management dashboard
- App Overview — Microsoft Licenses — Quick reference for the Inventory > Microsoft Licenses page