You have an Azure subscription that contains an app named App1. App1 has the app registration shown in the following table.

You need to ensure that App1 can read all user calendars and create appointments. The solution must use the principle of least privilege.
What should you do?

A. Add a new Delegated API permission for Microsoft.Graph Calendars.ReadWrite. B. Add a new Application API permission for Microsoft.Graph Calendars.ReadWrite. C. Select Grant admin consent. D. Add new Delegated API permission for Microsoft.Graph Calendars.ReadWrite.Shared.