1. Foundation Guide
  2. Understanding How to Register Client Application in Microsoft Azure AD

Understanding How to Register Client Application in Microsoft Azure AD

For EnterpriseOne to communicate with Microsoft SharePoint, you must register a client application in Microsoft Azure AD. The app registration generates a tenant ID, and an application (client) ID, a unique identifier assigned by the Microsoft identity platform, which you must update while creating a softcoding record in EnterpriseOne. You must also generate a client secret that acts as a password the application uses to authenticate user credentials with Microsoft identity platform.
Note: An administrator or a user with administrator privileges in Microsoft Azure AD can register the client application.

Log in to portal.azure.com and perform the following configuration steps:

  1. Select Azure Active Directory in the left menu.
  2. Select App registrations.
  3. Select New application registration.

  4. Enter the following information:

    • Name: Enter a name for the application. For example, JDESharePoint.
    • Supported account types: Select Accounts in this organizational directory only.
    • Redirect URI: This is the endpoint at which your app will receive responses from the Microsoft identity platform. You can enter a value if your organization has a Redirect URI or leave it blank.
  5. Click Register.

After successful registration, you can see the application (client) ID in the Overview pane. You must add a client secret that will enable the app to authenticate user credentials and create a secure connection between EnterpriseOne and Microsoft Azure AD.

  1. Click Add a certificate or secret for Client credentials.
  2. Click New client secret.
  3. In Add a Client Secret, enter a description in the Description field. For example, ClientSecretforSharePoint.
  4. In Expires field, use the drop-down to select the duration for which the client secret will be valid. You can use the recommended settings or define a custom value.
  5. Click Add.

Copy and save the populated secret string under Value. This acts as the application password for the communication between Microsoft Azure AD and EnterpriseOne. You must update the value later while configuring the softcoding record in EnterpriseOne.

After you have registered the client application in Microsoft Azure AD, you must configure the permissions the application needs. Grant the following permissions:

  • Application
  • Directory
  • Files
  • Sites

You need Administrator consent for all the above permissions. If you have admin privileges, you can use the option Grant admin consent to provide consent for all the permissions you added. Alternatively, you must request your administrator to grant access to the permissions.

For details on the permissions and consent, see “Introduction to permissions and consent” in Microsoft Azure AD documentation.