<< Click to Display Table of Contents >> RayVentory Data Hub > 12.6 u5 > Connectors > Alphabetic Connector List > Microsoft Graph Generic Query Prerequisites |
In order to call the Microsoft Graph API an access token from the Microsoft identity platform is needed. The access token contains information about the connector and the permissions it has for the resources and the APIs available through Microsoft Graph. The connector must be registered with the Microsoft identity platform and be authorized by either a user or an administrator for access to the Microsoft Graph resources needed.
Integrate the connector by registering it with the Microsoft Identity Platform and thereby establish the information that is used to get tokens:
•Application ID: A unique identifier assigned by the Microsoft Identity Platform.
•Redirect URI/URL: One or more endpoints at which the connector will receive responses from the Microsoft Identity Platform.
•Application Secret: A password or a public/private key pair that the connector uses to authenticate with the Microsoft Identity Platform.
In order to register the connector execute the following steps:
1.Sign in to the Azure portal.
2.If the account has access to more than one tenant, select the Azure AD tenant by selecting the account in the top right corner and setting the session to the respective tenant.
3.Select the Azure Active Directory service in the navigation pane on the left and navigate to App registration > New registration.
4.On the Register an application page enter the registration information for the connector.
•Name: Enter a meaningful name that will be displayed to the users.
•Supported account types: Select which accounts will be supported by the connector:
Supported account types |
Description |
---|---|
Accounts in this organizational directory only |
This option maps to Azure AD only single-tenant.
This is the default option unless the app is being registered outside of a directory. In cases where the app is registered outside of a directory, the default is Azure AD multi-tenant and personal Microsoft accounts. |
Accounts in any organizational directory |
This option maps to an Azure AD only multi-tenant.
If the connector has been registered as Azure AD only single-tenant, it can be updated to be Azure AD multi-tenant and back to single-tenant through the Authentication blade. |
Accounts in any organizational directory and personal Microsoft accounts |
This option maps to the Azure AD multi-tenant and personal Microsoft accounts.
If the connector has been registered as Azure AD multi-tenant and personal Microsoft accounts, it cannot be changed in the UI. Instead it is necessary to use the application manifest editor to change the supported account types. |
•Redirect URI (optional) - Select Web as application type. Provide the base URL of your RayVentory Data Hub
5.When finished, select Register.