To connect Salesforce® with SharePoint®, an authentication provider must first be set up in SharePoint. AdvoLogix® supports two modes of authentication for SharePoint® to connect:
- SharePoint® Add-in - A web application registered within SharePoint online/Office 365 panel.
- Azure® Active Directory (AD) - An Azure® AD based web application registered within Azure® Management Console.
Which one you use is based on how your organization has set up your SharePoint® access. This article will walk you through how to register a web application using Azure® AD. To perform the steps needed, you must be an administrator who manages SharePoint® and access for employees. If you do not have access to Azure® Management Console, then proceed with registering the application in the SharePoint® Add-in. Otherwise, you can register your web application using Azure® AD.
Log in to your Azure portal as an administrator. Then, under Azure Services, select Azure Active Directory.
On the Active Directory page, select App registrations from the navigation menu on the left. Then, click New Registration in the header menu.
Input your information into the following form.
- Name - Enter a name for your application.
- Supported Account Types - Select the accounts in this organizational directory only (Single tenant).
Redirect URI - Select Web as the redirect URL type and enter the redirect URL needed by AdvoLogix to authenticate with SharePoint® and copy the value to a text file. This URL will contain your organization's My Domain. (For more information on My Domain, see this article.) The URL structure will look like this:
https://[your salesforce my domain]--shpoint.visualforce.com/apex/shpoint__ConnectSharePoint
- Select Register when you are ready to move to the next step.
After the app is created, select Overview from the navigation menu on the left. Copy the Application (client) ID and Directory (tenant) ID to a text file. You will need these to complete the authentication configuration later in Salesforce®.
From the navigation menu on the left, select Certificates & secrets, then select New Client Secret.
Next, input the information needed for the client secret.
- Enter a description
- Select a duration
- Select Add to save your changes
Copy and save the Value to a text file for later use. This is the only time you will be able to copy/paste this particular text. If you do miss this step, you will have to repeat Step 4.
The Value text will be needed to complete the SharePoint configuration in Salesforce. (See Step 2)
From the navigation menu on the left, select Authentication. Then, under Platform configurations, select + Add a platform.
- Select Web
- Enter the Redirect URIs from Step 2 (if it was not entered at that time)
- Select Configure to move to the next step
Under the Implicit grant and hybrid flows, enable Access tokens and ID tokens checkboxes. Then, in the header menu click Save.
From the left panel, click API Permissions, the select + Add a permission.
- Select SharePoint
- Choose Delegated permissions
- Expand the AllSites grouping and enable the following permissions:
- Select the Add Permissions button
Click Grant admin consent for [your company name].
Confirm by selecting Yes.