SharePoint Online

Learn how to connect to Sharepoint Online with Application Access

Introduction

We are now recommending connecting to SharePoint with Application Access. This involves setting up a new application in Azure.

Recommendations

For best results when connecting to SharePoint Online in Movebot using Application Access, we recommend the following permissions:

  • A Global Administrator service account in Azure

  • The Global Administrator account is licensed

  • You have the SharePoint domain/hostname on hand.

If you are unable to connect as a Global Administrator, contact us for alternative configuration options.

Configuration Steps

You can also follow our step-by-step video guide below.

To connect to SharePoint you'll need to create an application in Azure, then use that application to connect Movebot and SharePoint.

Creating the application in Azure

When creating an application in Azure it can sometimes take a few minutes for the settings to populate. If testing the connection in Movebot is producing errors, give it a minute or so and then retest.

  1. Login to Movebot and create a new project or task

  2. Choose to Create new Connection

  3. Select Sharepoint from the list of available connections and set the connection name

  4. Provide your SharePoint domain/hostname in the field required

  5. Login to Azure as a Global Administrator and register a new application at https://portal.azure.com/

  6. Name the application. Keep the other fields as default and click Register.

  7. Copy the Application ID from the "Overview" section and paste it into Movebot.

  8. In Azure in the Application permissions, click API Permissions --> Add a Permission. Select Microsoft Graph, then Application Permissions.

Enable the following Permissions:

Directory.Read.All
Files.ReadWrite.All
SharePointTenantSettings.Read.All
Sites.Manage.All
User.ReadWrite.All
  1. Next add the access, under Azure in the Application permissions, click API Permissions --> Add a Permission. Select Sharepoint, then Application Permissions.

Select the following permissions:

Sites.FullControl.All
  1. Grant admin consent and finish the consent process.

Generating the client secret

Under the application configuration:

  1. Click Certificates and Secrets -- > Client Secrets -- > New Client Secret. Provide a description and Add. Copy the Secret from the "Value" Field.

  2. Return to Movebot and Paste the Secret "Value" into the appropriate field

Upload the certificates from Movebot

Finally, you will need to generate and download the client certificate from Movebot and upload it to Azure for authentication.

  1. Under Step 3: click the button Generate and Download Certificate. You should get a PEM file download from Movebot.

  2. In Azure - Click Certificates and Secrets -- > Certificates -- > Upload Certificate

  3. Upload the file created in step 1

  4. The thumbprint in Azure should match the one shown in Movebot

  5. Return to Movebot and Click Save and Test connection in Movebot.

  6. If the connection has succeeded, you can continue.

Video Guide

Supported Features

FeatureSupported in

SharePoint Document Libraries

Fully Supported

OneDrive Users

Fully Supported

Permissions

Fully Supported

Versions

Fully Supported

Modification Retention

Fully Supported

Automatic Sanitization

Fully Supported

Tags: sharepoint

Last updated