Receptors & Integrations
      Back to home
      1. Trustero Support
      2. Trustero User Guide
      3. Receptors & Integrations

      Microsoft App Registration Setup Guide

      How to setup app registrations for Azure and Sharepoint

      This document describes the steps to connect your Microsoft Cloud Platform Applications (e.g. Azure, Sharepoint, OneDrive, Active Directory, etc) with Trustero. 

      Microsoft Cloud Platform Applications integrate with 3rd party applications, like Trustero, through Microsoft Azure’s App Registrations.

      There are two parts of this:

      1. Common Azure App Registration steps (see below)
      2. Specific details for integrations that require an app registration: 
        1. Azure receptor 
        2. Sharepoint document management system integration

      Azure App Registration 

      Here's how to create the app registrations:

      1. Register for an Microsoft Azure Account: https://signup.azure.com/
      2. Login to Azure Console using the Microsoft Online Account: https://login.microsoftonline.com/

        Enter the OTP from the authentication app if required.
      3. If you have access to multiple tenants, go to the settings icon, then select Directories + subscriptions on the left hand side. Choose the tenant in which you want to register the application.
      4. Create a new App Registration 
        • In the services bar, select App Registrations or find it using the search bar. 
        • Click on the + New Registration button 
        • Name the application (e.g. trustero-<service>-integration-app)
      5. Grant the application application permissions in order to access your Microsoft Services
        1. Under Manage > API Permissions, Click Add Permissions
        2. Select permissions to grant (see specific permissions in the annex below):
        3. Finally, click the Grant admin consent button
        4. Click yes to confirm the settings.
        5. Verify the permissions look like this: 
        1. Generate a Client Secret to be used with the Trustero Integration
          1. Under Manage > Certificates & secrets, click New client secret button
          2. Enter a description:
          3. After the confirmation, your new client secret value should be displayed. Remember to keep a copy of this information.
        2. Save the following values from the home page, which you will provide to Trustero:
          1. Application (client) ID
          2. Directory (tenant) ID
          3. Client secret

         

        Once these app registrations are in place, you can configure the specific Trustero integrations to use them. 

        1. Azure receptor 
        2. Sharepoint document management system integration

         

        Annex: Azure App Permissions Per Service


        Service

        Sub Category

        Permission Type

        Permissions

        Sharepoint

        Sites/Files

        Delegated Permission

        Sites.Read.All, Files.Read.All
         

        User

        Delegated Permission

        User.Read.all

        Active Directory

        Users

        Application Permission

        User.Read.All, Directory.Read.All, Group.Read.All

        Azure

        Intune

        Application Permission

        DeviceManagementManagedDevices.Read.All
         

        Policies

        Application Permission

        Policy.Read.All
         

        Logs & Reports

        Application Permission

        AuditLog.Read.All, Reports.Read.All
         

        Reports

        Application Permission

        Reports.Read.All
         

        Domain

        Application Permission

        Domain.Read.All