Loading
Table of Contents
Filter by (0)Add
Select Filters

          No results
          No results
          Here are some search tips

          Check the spelling of your keywords.
          Use more general search terms.
          Select fewer filters to broaden your search.

            Search all of Salesforce Help
            Search all of Salesforce Help
            Configure a Microsoft Azure App Manually Through Minimum Privilege Setup

            You are here:

            1. Salesforce Help
            2. Docs
            3. Salesforce Contracts

            Configure a Microsoft Azure App Manually Through Minimum Privilege Setup

            Configure a Microsoft Azure app to establish a connection between Salesforce and Microsoft.

            Required Editions

            Note
            Note To use a guided setup to integrate Microsoft 365 and Azure, see Set Up Microsoft 365 and Azure Integration Using Guided Setup.
            Available in: Lightning Experience
            Available in: Professional, Enterprise, Unlimited, and Developer Editions
            User Permissions Needed
            To configure a Microsoft Azure App: User without admin privileges in Azure
            1. Open Microsoft Azure.
            2. Log in to your Microsoft Azure account.
            3. To go to App registrations, search for Azure AD B2C, click Manage, and select App registrations.
            4. Click New Registrations.
            5. Enter the details.
              1. Enter a name for the app.
                For example, MicrosoftApp.
              2. For supported account types, select Accounts in this organizational directory only (Salesforce -SFDC-CLM only - Single tenant).
              3. Click Register.
                The Application (client ID), Object ID, and Directory (tenant) ID are visible.
            6. Note the Application (client) ID.
            7. Add permissions.
              1. Click API permissions.
              2. Click Add a permission | Microsoft Graph Delegated permissions.
              3. In Select permissions, enter Sites.Selected.
              4. Select Sites.Selected permission, and click Add permissions.
              5. Similarly, add these permissions.
                • openId
                • Offline_access
                • User.Read
                • User.Read Basic.All
              6. Request your Global Administrator to grant consent for the permissions you added, by clicking Grant admin consent for {TenantName}.
                The Grant admin content for {TenantName} link.
                When the Global Administrator clicks Yes, the status changes to Granted for Salesforce - {TenantName} for all permissions.
              7. Verify that the status has changed to Granted for Salesforce - {TenantName} for all permissions.
                The status of all the permissions have a green check.
            8. Add the new client secret.
              1. Click Certificates & secrets.
              2. Click New client secret.
                The Add a client secret window opens.
              3. Enter a description for the client secret.
                For example, MicrosoftApp.
              4. Specify an expiration timeframe.
              5. Click Add.
                A client secret value gets created.
              6. Immediately copy and save the Client Secret value.
                If you don't save the client secret value immediately, you need to create a new value. You need this copied client secret value while configuring Auth. Provider. Automatic encryption prevents retrieval of the client secret value. The Client Secret Value and Secret ID are visible.
             
            Loading
            Salesforce Help | Article