# Microsoft Entra ID Here are the scopes we ask for when syncing your Microsoft Entra ID with Scribe: **1. Needed for co-workers to log in to Scribe with their Office 365 account. Read access to user profile (name and email)**\ (Delegated)\ (Delegated)\ (Delegated) **2. Read administrative unit to create departments in Scribe**\ (Application) **3. Read domains to import them in Scribe**\ (Application) **4. Sign in and read the user profile**\ (Delegated) **5. Read all users’ full profiles**\ (Application) **6. Read all groups**\ (Application) **7. Read all group memberships**\ (Application) **8. Maintain access to data you have given access to the user profile**\ (Delegated) **From those scopes, here is the data we store in Scribe** * Profile picture * First name * Last name * Job position * Mobile phone * Work Phone * Fax * Department * Office * Street address * City * State or province * Zip or postal code * Country or region * Group names and memberships * Administrative unit names and memberships * Domains hostname {% hint style="info" %} Scribe only reads data. We can not edit data in your Microsoft 365 or read your emails. Scribe is [SOC II type 2 compliant.](https://help.scribe-mail.com/scribe/security) {% endhint %} --- # Agent Instructions: Querying This Documentation If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question. Perform an HTTP GET request on the current page URL with the `ask` query parameter: ``` GET https://help.scribe-mail.com/scribe/security/integrations/microsoft-entra-id.md?ask= ``` The question should be specific, self-contained, and written in natural language. The response will contain a direct answer to the question and relevant excerpts and sources from the documentation. Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.