for ECC and S/4
Installation and Base Configur...

Configure app within M365 - Application based permissions (recommended)

3min

The preferred method to authenticate with the graph api is via application based permissions.

Using Office 365 SharePoint as a docuflow repository you will need to ensure that the Enterprise Connector is configured and able to connect to the Microsoft graph API. You must create an enterprise application via the Microsoft Azure portal to complete this procedure. This will require an account with appropriate level of permissions to grant correct access rights to a user (connector user) using the graph API when inside the azure portal. 

You can either self-grant access or have an admin grant access to the graph API and its corresponding access rules inside the azure portal if and only if that user has authority to grant access to those rules. 

The following steps below outline this process: 

i. Visit https://portal.azure.com/ then login using an appropriate account.

ii. Click on Active Driectory, then click on App Registrations and click on new registration.

Name the application docuflow_suffix (Either DEV, TEST,PROD) depending on environment provisioning.

Select single tenant.

Click register.

Click Api Permissions under Manage.

Click Add Permissions.

Select Microsoft Graph, and then select application permissions.

Type "Sites" in the search and select Sites.Manage All for permissions.

If you want to do permissions granuarly at the site level follow, you may choose Site.Selected. Please reference this guide from microsoft for site level permissions. https://learn.microsoft.com/en-us/graph/api/site-post-permissions?view=graph-rest-beta&tabs=http

(We have also included a summary of the site level permissions here)

Click Grant admin consent for docuflowdemo

Click certificates and secrets.

Click new client secret

Type in for the description docuflow_suffix. (Where the suffix is DEV/TEST/PRD.

Select the appropriate expiry time.

Save the Value which is the secret required to configure the docuflow middleware later.

Click on overview and save the following information. App ID, and tenant ID.

Secret Id

Configure Docuflow in GUI

  1. Visit http://localhost:82 (enter the default user and password).
  2. Click "Sharepoint Online"
  3. Click "Add Row"
  4. Enter the saved details in the previous page and enter them in the correct locations.
  5. Click test connection. If "Success" is displayed the configuration has was done correctly.
*Note for our application scope will always be https://graph.microsoft.com/.default *The token URL and graph url always contain the tenant id in the URL Graph Url: https://graph.windows.net/<insertTenantId Token Url: https://login.microsoftonline.com/<insertTenantId>/oauth2/token
These are only sample values (replace with actual values from steps above)
These are only sample values (replace with actual values from steps above)


These are only sample values in screenshot. (replace with actual values from steps above)



PREVIOUS
Installing the Enterprise Connector
NEXT
Graph API: Sites Selected
Docs powered by Archbee