Set Up SharePoint Online and OneDrive

Prerequisites

Before starting, ensure you have completed the Azure AD Application setup.

Configure SharePoint Online Access

1. Request Graph API Application Permissions

  • Go to API permissions in your Azure AD application

  • Click Add a permission

  • Choose Microsoft Graph, then Application Permissions

    graph_api_application_permissions__2_.png

  • Request permissions for the following resources:

    • Sites.Read.All

2. Request SharePoint API Application Permissions

  • Go to API permissions

  • Click Add a permission

  • Choose SharePoint, then Application Permissions

    sharepoint_application_permissions.png

  • Request permissions for the following resource:

    • User.Read.All

    • Sites.Read.All

3. Grant Admin Consent

  • Grant admin consent for all requested permissions

  • If the application is registered with the admin account, you can grant the consent directly

  • Otherwise, the admin needs to login, go to App Registrations and accept the permissions requested by the amberSearch application

Certificate Setup

4. Generate or Upload Certificate in Amber Admin Settings

Navigate to Amber Admin Settings > Data Sources > SharePoint Online (https://customerName.ambersearch.de/settings/data-sources/sharepoint_online)

Choose one of the following options:

Option A: Generate Certificate (Recommended)

Click "Generate Certificate" - Amber will automatically create a self-signed certificate for you.

Option B: Upload Your Own Certificate

If you prefer to use your own certificate:

  • Prepare a .pem or .pfx bundle file containing both Private Key and Certificate

  • Select your file and click "Upload Certificate"

5. Download Public Key

After generating or uploading your certificate:

  1. In the Amber Admin Settings, locate the section "Update Certificate in Azure AD App Registration"

  2. Click "Download Public Key (.cer)"

  3. Save the amber_sharepoint.cer file

6. Upload Certificate to Azure Portal

  1. Go to Azure Portal > App registrations

  2. Select your Azure AD Application for amberSearch

  3. Navigate to Manage > Certificates & secrets

  4. Go to the "Certificates" tab

  5. Click "Upload certificate"

  6. Upload the amber_sharepoint.cer file you downloaded

  7. Copy the Thumbprint of the newly uploaded certificate

7. Validate Connection in Amber Admin Settings

Return to the Amber Admin Settings:

  1. In the "3. Validate Connection" section, paste the Thumbprint you copied from Azure

  2. Click "Validate"

  3. You should see a success message: "Connection validated successfully! The certificate is active and working."

Final Checks

After completing the steps above, verify that:

  • Graph API application permissions requested and admin consent granted

  • SharePoint application permissions requested and admin consent granted

  • Certificate uploaded to Azure AD and connection validated in Amber Admin Settings

That's it! Your SharePoint Online and OneDrive connection is now configured and ready to use.

If you need assistance, please reach out to us via IT@ambersearch.de