Background
CentreStack supports connecting to SharePoint Online document libraries via CentreStack Team Folders. In this way, SharePoint Online document libraries may be viewed in via the CentreStack drive letter, or in the CentreStack portal, alongside other CentreStack Team Folders.
Known Limitations
- CentreStack build 9.2.5126.40535 or later is required.
- SharePoint Online Document Libraries are per CentreStack tenant
Configuration
- Login as the CentreStack cluster admin or tenant admin.
- From the Dashboard click on the tenant that will be configured for SharePoint Online access.
- Click on the CONTROL PANEL button at the right of the page.
- Click on Sharepoint Online Integration
- Click Edit
- Copy the text in the Callback URL Paste it into a text editor for now.
- Sign into https://portal.azure.com as a global administrator for the Azure AD tenant.
- In the left-most blade click Azure Active Directory:
- In the next blade click App registrations:
- In the next blade click New registration:
- In the Register an application blade use these settings:
Name: AccessSharePointFromCentreStack
Supported account types: Accounts in this organizational directory only (hadroncloud only - Single tenant)
Redirect URI: Web: <the Callback URL from the CentreStack Storage Manager> - Click the Register button at the bottom of the Register an application blade.
- The CentreStack configuration requires the Application ID and Tenant Id (Directory Id). Click on the Overview node in the app registration blade and copy the Application (client) ID and Directory (tenant) ID to the clipboard and paste both values into a text editor.
- In the Branding node, update the Home page URL with the Callback URL from the CentreStack portal then click the Save button:
- In the app registration blade, click on the API permissions node then click the Add a permission button:
- Click on the SharePoint card:
- In the Request API permissions blade, click the Delegated permissions card:
- Expand the AllSites node and enable the AllSites.Read and AllSites.Write options. Expand the MyFiles node and enable the MyFiles.Read and MyFiles.Write options then click the Add permissions button:
- In the app registration blade, click on the Expose an API node, then click the Add a scope button.
- In the Add a scope blade, click the Save and continue button:
- In the Add a scope blade make sure to enable Admins and users in the Who can consent option. Other text fields are arbitrary:
Click the Add scope button once the Add a scope blade is filled in. - Back in the app registration blade, click on the Certificates & secrets node then click the New client secret button:
- In the Add a client secret blade, type some text in the Description such as Secret (the value is arbitrary). The Expires option allows you to configure how long until the password expires. Select an Expires value appropriate for the security requirements for your organization then click the Add button:
- The value of the secret will be generated automatically. Click the Copy to clipboard icon:
- Paste the secret into an text editor and verify that the value in the text editor matches the Azure portal.
- Login as the CentreStack cluster admin or tenant admin.
- From the Dashboard click on the tenant that will be configured for SharePoint Online access.
- Click on the CONTROL PANEL button at the right of the page.
- Enable the Sharepoint Online Integration option.
- Click Edit
- Scroll down to Sharepoint Online and click the option to enable it.
- In the Client ID field paste in the value from Azure AD's Application (client) ID
- In the Client Secret field paste in the value from Azure AD's password Value field.
- In the Tenant Id, use the text corresponding to the Directory (tenant) ID from the Azure portal.
- Click Apply at the upper right of the page to save the settings.
- Click on TENANT DASHBOARD at the top of the page.
- Click on Create Team Folder:
- Click on Cloud Storage:
- Click on Microsoft SharePoint Online:
- In the Folder name field use a name like the SharePoint Online site name then click Next:
- Paste the URL of the SharePoint Online site into the text box, then click on Get Authorization Code:
- Enable the Consent on behalf of your organization option then click the Accept button:
- Click Finish
- Click Add Collaborator:
- Add the appropriate users or groups, then click the Save icon:
- The collaborators you added will have the new Team Folder in their CentreStack drive.
Comments
1 comment
Hello. Are you aware of a way to do this without granting CentreStack access to all SharePoint sites, but somehow limit it to a single one? Thanks
Please sign in to leave a comment.