Loading
Collaborate with Everyone
Table of Contents
Filter by (0)Add
Select Filters

          No results
          No results
          Here are some search tips

          Check the spelling of your keywords.
          Use more general search terms.
          Select fewer filters to broaden your search.

            Search all of Salesforce Help
            Search all of Salesforce Help
            Create an Authentication Provider for SharePoint Online or OneDrive for Business Using Azure Portal

            You are here:

            1. Salesforce Help
            2. Docs
            3. Collaborate With Everyone

            Create an Authentication Provider for SharePoint Online or OneDrive for Business Using Azure Portal

            To use a Microsoft cloud-based external data source, create an authentication provider for it in Salesforce and register that provider in a Microsoft Azure web application.

            Required Editions

            Available in: both Salesforce Classic and Lightning Experience
            Available in: Professional, Enterprise, Performance, Unlimited, and Developer Editions
            User Permissions Needed
            To create authentication providers:

            Customize Application

            AND

            Manage Auth. Providers

            The high-level steps to fully configure an authentication provider include:

            • Creating an Authentication Provider Using Placeholder Values.
            • Registering a Web Application in the Azure Management Console.
            • Configuring the Authentication Provider in Salesforce.

            See Also

            Create an Authentication Provider Using Placeholder Values

            The authentication provider has a redirect URI so you can register your app.

            1. In Setup, enter Auth. Providers in the Quick Find box, then select Auth. Providers.
            2. Click New.
            3. For Provider Type, select OpenID Connect, and then set the following options.
              • Name — Enter the name you want to appear in Salesforce.
              • URL Suffix — Enter a suffix you want to appear at the end of the URL path. By default, the suffix reflects the Name entry.
              • Consumer Key — Enter a placeholder value.
              • Consumer Secret — Enter a placeholder value.
              • Authorize Endpoint URL — Enter a placeholder that begins with https.
              • Token Endpoint URL — Enter a placeholder that begins with https.
              • Default Scopes — Leave empty.
            4. Click Save. Then, at the bottom of the Auth. Provider detail page, copy the Callback URL entry to a text file.

            Register a Web Application in the Azure Management Console

            1. Log in to Azure at https://portal.azure.com/. (If you have any trouble, connect to Azure with your browser in “incognito” mode.)
            2. Under Azure Services, select Azure Active Directory.
            3. Select your active directory. Skip this step if you only have one.
            4. On the Active Directory page, select App registrations from the left navigation menu.
            5. In the header menu, click New Registration.
            6. Under Create, enter the following properties:
              • Name — Enter a name for your application.
              • Supported Account Types — Enter accounts that are only in this organizational directory.
            7. Click Register.
            8. After the app is created, from the left panel, click Overview.
            9. Copy the Application ID to a text file. You need this ID to configure the auth. provider in Salesforce.
            10. From the left panel, click Certificates & Secrets.
            11. Click New Client Secret, enter a description, select a duration, and click Add. To see the key value, click Save.
            12. Copy the key so you can use it in the auth. provider.
            13. From the left panel, click Authentication. Under Redirect URIs, select type as Web and paste the callback URL that you copied from the bottom of the Auth. Provider detail page.
            14. From the left panel, click API Permissions, click Add a permission, and click Sharepoint.
            15. Choose which required app permissions you want to enable and click Add permission.

            Configure the Authentication Provider in Salesforce

            In Salesforce, replace the original placeholder values with the correct ones from the Azure app.

            1. In Setup, enter Auth. Providers in the Quick Find box, then select Auth. Providers.
            2. Next to the authentication provider you created earlier, click Edit.
            3. Change the following values.
              • Consumer Key — Enter the Client ID you copied to a text file.
              • Consumer Secret — Enter the key you copied to a text file.
              • Authorize Endpoint URL — Enter: https://login.microsoftonline.com/common/oauth2/authorize?resource=https%3A%2F%2FYOUR_TENANT.sharepoint.com&prompt=login
              • Token Endpoint URL — Enter: https://login.microsoftonline.com/common/oauth2/token
              • SharePoint Online example: https://login.microsoftonline.com/common/oauth2/authorize?prompt=consent&​resource=https%3A%2F%2Fcontenthubblitz.sharepoint.com%2F
              • OneDrive for Business example: https://login.microsoftonline.com/common/oauth2/authorize?prompt=consent&resource=https://contenthubblitz-my.sharepoint.com/
            4. Click Save.
             
            Loading
            Salesforce Help | Article