diff --git a/data/reusables/identity-and-permissions/team-sync-azure-permissions.md b/data/reusables/identity-and-permissions/team-sync-azure-permissions.md
index 98f470b8b532..067ad11784b4 100644
--- a/data/reusables/identity-and-permissions/team-sync-azure-permissions.md
+++ b/data/reusables/identity-and-permissions/team-sync-azure-permissions.md
@@ -1,4 +1,4 @@
 To enable team synchronization for Entra ID, your Entra ID installation needs the following permissions.
-* Read all users’ full profiles
-* Sign in and read user profile
-* Read directory data
+* [Read all group memberships](https://learn.microsoft.com/en-us/graph/permissions-reference#groupmemberreadall) : GitHub gets a list of Entra groups so users can select one to synchronize to a specific GitHub team.
+* [Read all users’ full profiles](https://learn.microsoft.com/en-us/graph/permissions-reference#userreadall) : GitHub gets a list of members' Entra ID and Entra display/full names for syncing an Entra group and a GitHub team.
+* [Sign in and read user profile](https://learn.microsoft.com/en-us/graph/permissions-reference#userread) : When SAML SSO is enabled, users must single sign-on to the Entra application as a prerequisite for team syncing.