Microsoft Azure
Connecting your tenant with SharePoint and OneDrive
Configuring SharePoint & OneDrive Access
Connecting your SharePoint/OneDrive workspace to Study Tracker is a two-step process:
Create an Azure Active Directory App.
Register the app with Study Tracker.
Creating an Azure Active Directory (AD) App
Log into the Azure portal. Go to the Azure AD page.
On the Azure AD page, make a note of the Primary Domain value. Click the 'App Registrations' tab and then click the 'New Registration' button.
Give your application a distinct name (eg. Study Tracker). Under 'Supported Account Types', make sure the default value is selected ("Accounts in this organizational directory only"). Do not add a Redirect URI. Click 'submit'.
When you are redirected to the details page for your new application, make a note of the Client ID and Tenant ID values.
We also need to generate a Client Secret ID for authentication. Click 'Add a certificate or secret'.
On the next page, click 'New client secret'. In the window that opens, provide a name for your secret key and set the expiration date. Click 'Add'.
If you set an expiration date for your key, be sure to refresh your secret and update Study Tracker before the expiration date!
When your secret key is created, make a note of the Value and Secret ID values.
Next, we need to grant your application permission to access resources in your Microsoft account. Click on the 'API Permissions' tab of the application details page.
Click 'Add a permission'. When asked to choose an API, select 'Microsoft Graph'. When asked to choose permission type, select 'Application Permissions'.
Search-for and add the following permissions:
Files.ReadWrite.AllSites.Read.AllUser.Read.All
If you'd prefer not to grant Study Tracker access to all of your organization's SharePoint sites, you can use the Sites.Selected permission in place of Sites.Read.All. You can refer to this article for instructions on granting your Azure AD app access to sites: https://blog.dan-toft.dk/2022/12/sites-selected-permissions/
You will notice that some of the selected permissions require consent to be granted on behalf of the organization. Unless you are logged-in as an admin user, you will have to to get an admin to sign in and perform this task for you.
Registering your Azure AD App in Study Tracker
Log into Study Tracker as an admin user and go to the Admin Dashboard. Click the 'Microsoft Azure' tab. Click 'Register Microsoft Azure Integration'.
In the popup window, provide the following information:
Name: a display name for your Azure integration or account.
Domain: the primary domain of your Microsoft account, as found in your Azure AD dashboard. This typically takes the format of
myorganization.onmicrosoft.com.Tenant ID: the tenant/directory ID of your Azure AD app.
Client ID: the client/application ID of your Azure AD app.
Client Secret: the secret value generated for your Azure AD app (not the Secret ID).
Click 'Submit'. If the information you have provided is correct, the integration will complete successfully and the Azure Integration page will reload.
Adding SharePoint Sites and OneDrive Drives
Once you have successfully configured access to your Microsoft environment, you can connect SharePoint sites and OneDrive Drives to Study Tracker. Currently, this serves only to allow Study Tracker to browse and write study files to the Drives that support SharePoint sites. Study Tracker does not have the ability to read or publish any other SharePoint data, and does not have the ability to connect to private OneDrive Drives.
Click the 'Add SharePoint Site' button.
On the popup window, search-for and select the SharePoint Site you want to connect to. Click 'Submit'.
Once complete, the selected SharePoint Site and any attached Drives will be displayed in the Microsoft Azure page in the Admin Dashboard.
Before you can browse or write study files to any available Drives, you have to add a Root Storage Folder.
Last updated
