For Control-M/Enterprise Manager 9.0.21.300 - 9.0.22:

Configuring SharePoint for Access via Control-M Managed File Transfer : A Step-by-Step Guide

1. In the Azure portal, browse to App Registration > API permission.
    
   
    
2. Add Permissions for Microsoft Graph API
   1. Type: Only when planning to connect the Connection Profile using “Username & Password” authentication, choose the Delegation Permission type
      Otherwise, choose Application Permission type
   2. Permissions: Add the following permissions:
      1. Sites.Read.All
         (to access SharePoint site structure and metadata)
      2. Files.Read.All & Files.ReadWrite.All
         (to access and modify files in SharePoint document libraries)
      3. User.Read (delegated mode only)
         (for user sign-in and basic profile info)
          
3. Only when planning to connect the Connection Profile using “Username & Password” authentication, use the following:
   1. Browse to Azure Active Directory > App Registration > [Your App] > Authentication > Advanced Settings > Allow public client flows.
   2. For the “Enable the following mobile and desktop flows”, choose Yes.

Control-M/Enterprise Manager 9.0.22.025 and Higher:

Starting on Control-M/Enterprise Manager 9.0.22.025, You no longer need to provide Site.Read.All and Site.ReadWrite.All permissions if you do not utilize the list option. 

You can now define a specific SharePoint target Site Name and Site ID in a File Transfer job definition for secure SharePoint transfers. 

Under the Storage Container section, click the ellipsis (...) next to the Left/Right Site Name field. You should see the option Select Site > Site Name and ID.