How to Configure GSX O365 Usage API Permissions

When a report requires additional permissions, you will see a message such as the ones below:

Clicking Find out more will take you to the settings page which will explain how to grant the required permissions:

Clicking the Connect to Azure Active Directory button will take you to the Office 365 Login page where you will be prompted to log in to Office 365 as a global administrator.  At no point will GSX 365 Usage see your username and password, and you will have the chance to review and approve the permissions before you continue.

Once you have entered your username and password, review the permissions to ensure they are appropriate for your organization and click the Accept button.

You will now be taken back to the application where it will check to ensure the permissions have been correctly applied.  It can sometimes take a minute or two for the permissions to apply due to replication delays within the Microsoft Azure infrastructure:

Once the permissions have been applied you will be notified and you can navigate back to the report or feature you were trying to access before:

Removing the Additional Permissions

At any time, you can remove these permissions and disconnect the Cogmotive application from your Office 365/Azure AD account using PowerShell.

First, log in to Office 365 using PowerShell as a Global Administrator.

Now, run the following CmdLet to find the application in your Office 365 account. This will display all applications with word Cogmotive in their name.

Get-MsolServicePrincipal | ? {$_.DisplayName -like "Cogmotive*"}

Copy the AppPrincipalID in the result and then use it to remove the application with this cmdlet

Remove-MsolServicePrincipal -AppPrincipalId <AppPrincipalIDAbove>