At the moment when integrating Azure into meshStack I need to create a Service Principal that has access on the entire Entra tenant and all management groups.

For security sake it would be much better & easier to integrate only a certain part of the management group hierarchy.