Skip to main content

CentreStack Integration with SharePoint Online

Jeff Reed
  • Updated

Background

CentreStack supports connecting to SharePoint Online document libraries via CentreStack Team Folders. In this way, SharePoint Online document libraries may be viewed in via the CentreStack drive letter, or in the CentreStack portal, alongside other CentreStack Team Folders.

Known Limitations

  • CentreStack build 9.2.5126.40535 or later is required.
  • SharePoint Online Document Libraries are per CentreStack tenant

Configuration

  1. Login as the CentreStack cluster admin or tenant admin.
  2. From the Dashboard click on the tenant that will be configured for SharePoint Online access.
  3. On Tenant Dashboard, click Settings, Sharepoint Online Integrationmceclip0.png
  4. Click Edit
  5. Copy the text in the Callback URL Paste it into a text editor for now.mceclip1.png
  6. Sign into https://portal.azure.com as a global administrator for the Azure AD tenant.
  7. In the left-most blade click Azure Active Directory:
    SPO1.png
  8. In the next blade click App registrations:
    mceclip0.png
  9. In the next blade click New registration:
    mceclip1.png
  10. In the Register an application blade use these settings:
    Name: AccessSharePointFromCentreStack
    Supported account types:  Accounts in this organizational directory only (hadroncloud only - Single tenant)
    Redirect URI: Web: <the Callback URL from the CentreStack Sharepoint Online Integration in step 5>
    mceclip2.png
  11. Click the Register button at the bottom of the Register an application blade.
  12. The CentreStack configuration requires the Application ID and Tenant Id (Directory Id). Click on the Overview node in the app registration blade and copy the Application (client) ID and Directory (tenant) ID to the clipboard and paste both values into a text editor.
    mceclip16.png
  13. In the Branding node,  update the Home page URL with the Callback URL from the CentreStack portal then click the Save button:
    mceclip0.png
  14. In the app registration blade, click on the  API permissions node then click the Add a permission button:
    mceclip4.png
  15. Click on the SharePoint card:
    mceclip5.png

  16. In the Request API permissions blade, click the Delegated permissions card:
    mceclip6.png
  17. Expand the AllSites node and enable the AllSites.Read and AllSites.Write options. Expand the MyFiles node and enable the MyFiles.Read and MyFiles.Write options then click the Add permissions button:
    mceclip9.png
  18. In the app registration blade, click on the Expose an API node, then click the Add a scope button.
  19. In the Add a scope blade, click the Save and continue button:
    mceclip0.png
  20. In the Add a scope blade make sure to enable Admins and users in the Who can consent option. Other text fields are arbitrary:
    mceclip2.png
    Click the Add scope button once the Add a scope blade is filled in.
  21. Back in the app registration blade, click on the Certificates & secrets node then click the New client secret button:
    mceclip10.png
  22. In the Add a client secret blade, type some text in the Description such as Secret (the value is arbitrary). The Expires option allows you to configure how long until the password expires. Select an Expires value appropriate for the security requirements for your organization then click the Add button:
    mceclip11.pngKeep in mind that if you set an expiration time for the client secret, after it expires, need to create a new client secret and re-configure the Sharepoint Online Integration on Centrestack, to use the new secret value.
  23. The value of the secret will be generated automatically. Click the Copy to clipboard icon:
    mceclip13.png
  24. Paste the secret into an text editor and verify that the value in the text editor matches the Azure portal.
  25. Login as the CentreStack cluster admin or tenant admin.
  26. From the Dashboard click on the tenant that will be configured for SharePoint Online access.
  27. Click on the Settings, Sharepoint Online Integration
  28. Click Edit
    1. Scroll down to Sharepoint Online and click the option to enable it.
    2. In the Client ID field paste in the value from Azure AD's Application (client) ID
    3. In the Client Secret field paste in the value from Client secret Value field.
    4. In the Tenant Id, use the text corresponding to the Directory (tenant) ID from the Azure portal.
    5. Click Apply at the upper right of the page to save the settings.
  29. Click on TENANT DASHBOARD at the top of the page.
  30. Click on Create Team Folder:
    SPO14.png
  31. Click on Cloud Storage:
    SPO15.png
  32. Click on SharePoint Online:
    mceclip2.png
  33. In the Folder name field, specify the folder name. Centrestack will create a root folder with the name specified here. Click Next:
    mceclip3.png
  34. Click on Get Authorization Code:
    mceclip8.png
  35. Enable the Consent on behalf of your organization option then click the Accept button:
    mceclip0.png
  36. If Authentication Code is not auto pasted to the configuration page, click 'Copy to Clipboard', to copy the code. Close the authentication window and paste it to the code field back in the configuration window. Click Authorize.mceclip4.pngmceclip5.png
  37. Once Authorized, click 'SharePoint site' field. Centrestack will load the existing sites automatically.mceclip6.png
  38. Click on drop down menu next to SELECT, to show the list of document libraries under the site. The corresponding URL will show next. mceclip7.png
  39. Click Finish
  40. Click Add Collaborator:
    SPO20.png
  41. Add the appropriate users or groups, then click the Save icon:
    SPO21.png
  42. The collaborators you added will have the new Team Folder in their CentreStack drive.

Related articles

Comments

1 comment

Date Votes
  • Thomas

    Hello. Are you aware of a way to do this without granting CentreStack access to all SharePoint sites, but somehow limit it to a single one? Thanks

    0

Please sign in to leave a comment.