Skip to main content

Setup Guide

To use the Microsoft SharePoint Pages connector, you must register an application in Microsoft Entra ID and obtain OAuth 2.0 client credentials.

Prerequisites

  • A Microsoft Azure developer account
  • A Microsoft 365 Business Basic, Business Standard, Business Premium, or Enterprise (E1, E3, or E5) plan with SharePoint Online enabled

Create a Microsoft Account and Set Up SharePoint Access

  1. Navigate to the Microsoft 365 website and sign up for an account or log in if you already have one.

  2. Ensure your plan includes SharePoint Online and its API capabilities. SharePoint Pages API features may require Microsoft 365 E3 or higher for full functionality.

Register an Application and Generate Credentials

  1. Log in to the Microsoft Azure Portal using your Microsoft 365 account credentials.

  2. In the left-hand navigation menu, select Microsoft Entra ID in the top search bar.

  3. In the left panel, navigate to App registrations and click New registration.

    New application registration

  4. Enter a name for your application, select the appropriate Supported account types (e.g., "Single tenant only"), and click Register.

    Application registration details

  5. Once the application is registered, note down the Application (client) ID and Directory (tenant) ID from the Overview page.

    Client ID and Tenant ID

  6. Navigate to Certificates & secrets in the left panel, click New client secret, provide a description and expiry period, then click Add. Copy the generated client secret value immediately.

    Create client secret

  7. Navigate to API permissions in the left panel and click Add a permission.

    Add API permission

  8. Select Microsoft Graph from the available API options.

    Microsoft Graph API permission

  9. Select Application permissions, then search for and add the following permissions depending on your use case, then click Add permissions.

    PermissionOperations covered
    Sites.Read.AllRead sites, lists, columns, content types, drives, analytics
    Sites.ReadWrite.AllCreate and update lists, list items, drives, and content
    Sites.Manage.AllUpdate site properties, create/delete columns and content types
    Sites.FullControl.AllManage site permissions

    API site permissions

tip

Grant only the permissions your application actually requires. For read-only use cases, Sites.Read.All is sufficient. For full connector coverage, add all four.

  1. Click Grant admin consent to approve the permissions for your organization.

    Grant admin consent

  2. Construct the tokenUrl using the Directory (tenant) ID obtained earlier:

https://login.microsoftonline.com/<TENANT_ID>/oauth2/v2.0/token
note

This is the OAuth 2.0 token endpoint the connector uses to exchange your clientId and clientSecret for an access token with the https://graph.microsoft.com/.default scope.

Next steps