Microsoft 365 Cloud Authentication Settings

Configuration of the authentication settings for Microsoft 365 requires two main steps:

1. Configure the Global Entra ID Service

2. Configure the SLNX Cloud Authentication Settings

Configure the Global Entra ID Service

Before you can configure the Cloud Authentication settings for Microsoft 365, you must configure the Global Entra ID service. This service allows the Microsoft 365 SharePoint connector to access the Microsoft 365 repository.

Log in to Entra ID Portal and start a new App registration. Under account type, select the account type based on desired connector access scope:

  • For applications used for Microsoft 365: Select [Web], and copy and paste the value from the [Redirect URL] field on the Microsoft 365 Cloud Authentication Settings screen.

  • For applications used for Microsoft 365 - Proxy: Select [Public client/native (mobile & desktop)], and enter https:// login.microsoftonline.com/common/oauth2/nativeclient

When both authentication modes are necessary for connector usage, you need to register applications to be used by Microsoft 365 and Microsoft 365 - Proxy separately on the Entra ID Portal.

Configure the SLNX Cloud Authentication Settings

  1. Click [Workflow] ®[General] ®[Cloud Authentication Settings].

  2. Click on an application from the list to configure the settings. If configuring more than one tenant, click +Add instead.

Item

Description

Application Type

Displays the authenticator of the desired cloud application. To accommodate more than one tenant, you can use the +Add button to add a new instance of either Microsoft 365 or Microsoft 365 -Proxy.

Description

Add an optional description. If adding more than one tenant, enter a description to easily identify each particular tenant.

Application Name

Specify the name of the application. Maximum length: 2048

Alphanumerical characters (0 to 9, a to z, A to Z), periods, underscores, hyphens, and spaces are available.

Company Name

Specify the name of the company by copying it from the Entra ID Portal overview page (xxxx.onmicrosoft.com).

Maximum length: 2048

Alphanumerical characters (0 to 9, a to z, A to Z), periods, underscores, hyphens, and spaces are available.

Client ID

Specify the client ID of the registered application by copying [Application (client) ID] from the application overview page.

Maximum length: 2048

Client Secret

Specify the client secret of the registered application. Click [Change Password] to change the client secret.

The client secret can be obtained using the following procedure:

  1. Click [Certificates & secrets]    [New client secret].

  1. Specify a secret description and select the expiration period.

Copy the client secret value. Maximum length: 2048

Tenant ID

Specify the tenant ID of the registered application by copying [Directory (tenant) ID] from the application overview page.

Maximum length: 2048

Alphanumerical characters (0 to 9, a to z, A to Z), periods, underscores, hyphens, and spaces are available.

Redirect URL

Displays the redirect URL that should be used to register the client application. This setting cannot be changed.

Test

Click [Test] to validate the authentication settings.

  1. Enter the user name and password to authenticate the user.

  1. When user authentication succeeds, the specified Client ID/Client Secret/Tenant ID/Redirect URL will be passed along to the Entra ID authentication endpoint.

  2. Click [Accept].

  • Note that the above is only for testing and the user should perform authorization from the User Console separately. For details, see "Authorizing Access to Cloud Repository", User's Guide.
  • For testing purposes, the Web browser must have an internet connection to access the Entra ID authentication endpoint and receive a response. The Core Server host name included in [Redirect URL] has to be resolved so the response can be redirected to the server.

Entra ID endpoint

Specify the Entra ID endpoint published by Microsoft. Change the value only when using another national Entra ID service.

The default is the URL for Global Entra ID service.

https://login.microsoftonline.com

Scope

Specify the scope published by Microsoft. Change the value only when using another national Entra ID service.

The default is the scope values for Global Entra ID service.

https://graph.microsoft.com/Files.ReadWrite.All

https://graph.microsoft.com/Sites.ReadWrite.All

https://graph.microsoft.com/User.Read offline_access

Microsoft 365 - Proxy

Item

Description

Application Type

Displays the authenticator of the desired cloud application. Only one application can be created for each type per system.

Application Name

Specify the name of the application. Maximum length: 2048

Alphanumerical characters (0 to 9, a to z, A to Z), periods, underscores, hyphens, and spaces are available.

Company Name

Specify the name of the company by copying it from the Entra ID Portal overview page (xxxx.onmicrosoft.com).

Maximum length: 2048

Alphanumerical characters (0 to 9, a to z, A to Z), periods, underscores, hyphens, and spaces are available.

Client ID

Specify the client ID of the registered application by copying [Application (client) ID] from the application overview page.

Maximum length: 2048

Tenant ID

Specify the tenant ID of the registered application by copying [Directory (tenant) ID] from the application overview page.

Maximum length: 2048

Redirect URL

Displays the redirect URL that should be used to register the client application. This setting is required.

Maximum length: 2048

The default value (https://login.microsoftonline.com/common/ oauth2/nativeclient) or the URL for "Public client/native (mobile & desktop)" which Microsoft publishes is supported.

Entra ID endpoint

Specify the Entra ID endpoint published by Microsoft. Change the value only when using another national Entra ID service.

The default is the URL for Global Entra ID service.

https://login.microsoftonline.com

Scope

Specify the scope published by Microsoft. Change the value only when using another national Entra ID service.

The default is the scope values for Global Entra ID service.

https://graph.microsoft.com/Files.ReadWrite.All

https://graph.microsoft.com/Sites.ReadWrite.All

https://graph.microsoft.com/User.Read offline_access