Finding client ID and client Secret
To find the client ID and secret of your Azure tenant, follow the steps listed below.
- Navigate to https://portal.azure.com/#home and sign in to the Azure portal using the credentials of an administrator.
- If your account gives you access to more than one tenant, select your account in the upper right corner. Set your portal session to the Azure AD tenant that you want.
- From the left-pane, select Azure Active Directory.
- In Azure Active Directory, select App registrations from the left-pane
- Select New registration.
- In the Register an application section, enter a meaningful application name to display to users. Select who can use this application based on your environment and click Register.
- Once you have registered the application, click on the View API permissions button.
- Select Add a permission.
- Select Microsoft Graph.
- Select Delegate permissions. Using the search box provided, add the following permissions: Directory.AccessAsUser.All, Group.Read.All, offline_access, Sites.FullControl.All, User.Read, User.ReadWrite.All and click the Add permissions button.
- Select Application permissions. Using the search box provided, add the following permissions: Group.Read.All and Sites.FullControl.All. Click the Add permissions button.
- Once you’ve selected all the graph permissions, your API permissions screen will look similar to this.
- Select Add a permission and select SharePoint.
- Select the following SharePoint permissions: Sites.FullControl.All (Application permission), TermStore.ReadWrite.All (Application permission), User.ReadWrite.All (Application permission), User.ReadWrite.All (Delegated permission).
- Select the Grant admin consent for <Tenant name> button, where <Tenant name> will be the name of your Azure tenant.
- Select Yes to confirm your choice.
- Click Certificates and secrets from the left-pane.
- Select the New client secret button.
- Provide a name for the client secret, the duration for which the client secret will be valid, and click Add.
- Copy the new client secret value immediately. You won't be able to retrieve it after you perform another operation or leave this page. Use the copy icon marked below.
- Click Overview in the left-pane and copy the client ID.
You can now use the client ID and secret for the duration specified in the expiration field, after which you’ll have to repeat the process.
- Navigate to https://[Tenant]-admin.sharepoint.com/_layouts/15/appinv.aspx. Enter the client ID in the App Id field and click Lookup.
- In the App's Permission Request XML field, enter the below code to grant appropriate access.
<AppPermissionRequest Scope="http://sharepoint/content/tenant" Right="FullControl" />
- Click Create and you will be presented with a consent pop-up box.
- Click Trust It to grant RecoveryManager Plus with the required permissions.