This article describes the API permissions that must be setup in Azure for the following connector: 'Microsoft-Intune-Connector'.
The 'Microsoft-Intune-Connector connector uses the 'Microsoft Graph' API. Permissions for this can be viewed and requested under App registration for the Spider Intune Connector in Azure.
Choose Application permissions and the DeviceManagementManagedDevices.Read.All permission as shown below

In order for the Spider Intune connector to receive the required data the 'Microsoft Graph' API requires the following Application permission to be granted in the Azure Portal: DeviceManagementManagedDevices.Read.All

Please note: Admin consent is required for this API permission to function.