Blue Hexagon integrates with Windows Defender ATP for Endpoint using Azure App API
To prepare the Azure App and setup API permissions log into Azure AD portal at https://portal.azure.com/#home
...
After creating the new application, in Manage > API Permissions this application will need WindowsDefenderATP permissions (with Admin consent) BlueHexagon requires the ability to Read and write all IOCs, Isolate machine, Stop and quarantine file, Collect Forensics, Run advanced queries. After adding these permissions select Grant admin consent for Blue Hexagon.
...
Once the permissions are set and admin consent is granted select Certificates & secrets from the navigation bar and generate a new client secret .
...