Skip to main content
Select Actions to adjust the guide
Some actions may require additional configuration in the provider to be accessible. Choose the actions you need and the guide will be updated.
Action
Scope(s)
Loading actions…
Dynamic Guide URL
Scopes Selected
Separator
You must have at least Application Developer permissions in your Azure account to register applications and configure application permissions in Microsoft Entra ID. Note: The Client Credentials (app-only) authentication option cannot be used with actions that call /me/… Microsoft Graph endpoints (for example, actions in microsoftteams.chats and microsoftteams.users); those actions require delegated user tokens and will fail when used with client credentials.

Register Your Application in Microsoft Entra ID

To use client credentials authentication with Microsoft Teams, you need to register an application in Microsoft Entra ID and configure application permissions.

1

Sign in to Microsoft Entra Admin Center

Sign in to the Microsoft Entra admin center as at least an Application Developer. If you have access to multiple tenants, click the Settings (gear) icon in the top-right corner, then select the desired tenant from the list under Directory + subscription.

2

Create a New App Registration

Navigate to App registrations by searching from the top search bar and click on New registration.

  • Enter a meaningful Name for your app (e.g., StackOne Microsoft Teams Integration).
  • Under Supported account types, select Single tenant if only your organization will use this integration, or Multitenant if you need to support users from multiple Azure AD tenants. Recommended option is Multitenant.
  • You do not need to configure a redirect URI for client credentials flow.
  • Select Register to create the app registration.
3

Copy the Application (Client) ID

After registration, you’ll be directed to the application’s Overview page. Copy the Application (client) ID value and store it securely for use later.

4

Copy the Directory (Tenant) ID

From the same Overview page, copy the Directory (tenant) ID value and store it securely for use later.

Configure Application Permissions

Grant your application the necessary Microsoft Graph API application permissions. These are different from delegated permissions and do not require user consent.

1

Open API Permissions

From the left menu under Manage, select API permissions.

2

Add Microsoft Graph Application Permissions

Enables actions: Add Channel Member, Add Chat Member, Add Team Member, Add Team Members In Bulk, Archive Channel, Archive Team, Change Password, Clone Team, Create Channel, Create Chat, Create Team, Create User, Delete Channel, Delete Channel Message, Delete Channel Tab, Delete Chat, Delete Chat Message, Delete Team, Delete User, Get Channel, Get Channel Files Folder, Get Channel Member, Get Channel Message, Get Channel Tab, Get Chat, Get Chat Member, Get Chat Message, Get Current User, Get Message Reply, Get Primary Channel, Get Team, Get Team Member, Get User, List All Channel Members, List All Channel Messages, List All Channels, List Channel Members, List Channel Messages, List Channel Tabs, List Channels, List Chat Members, List Chat Messages, List Chats, List Incoming Channels, List Message Replies, List Team Members, List Teams, List Users, Remove Channel Member, Remove Chat Member, Remove Team Member, Remove Team Members In Bulk, Send Channel Message, Send Chat Message, Send Message Reply, Unarchive Channel, Unarchive Team, Undo Soft Delete Chat Message, Update Channel, Update Channel Message, Update Chat, Update Team

Click Add a permission, then select Microsoft Graph. Select Application permissions and add the scopes required for your use case, then click Add permissions to save.

Note: Client credentials (app-only) authentication cannot access user-specific /me endpoints (e.g., chat actions). Use the OAuth 2.0 delegated flow for those actions.

3

Grant Admin Consent

Click Grant admin consent for [tenant name] and select Yes to consent on behalf of the organization. After granting, verify that Granted for [tenant name] appears under the Status column.

Generate Client Secret

Create a client secret that will be used to authenticate your application with Microsoft Teams.

1

Navigate to Certificates & Secrets

From the left menu under Manage, select Certificates & secrets.

2

Create a New Client Secret

Under the Client secrets tab, click New client secret.

  • Add a Description (e.g., StackOne Integration Secret).
  • Select an expiration period.
  • Click Add.
3

Copy the Client Secret Value

Immediately copy the Value of the newly created client secret and store it securely for use later. This value will only be shown once and cannot be retrieved again.

Linking the Account from the Hub

1

Navigate to the Hub

Use one of the three Linking Account Methods to access the Hub.
2

Fill out the fields

Fill out the following fields using details from your provider:
  • Tenant ID
  • Client ID
  • Client Secret
3

Connect

  • Click Connect
  • If applicable, the provider will redirect you to a sign-in or authorization page. Complete the provider’s authorization flow.
  • Once authorization is successful, you will see a confirmation popup

If the account linking is successful, you will see the newly linked account in your Accounts page.

References

Microsoft Graph API

Full REST API reference for Microsoft Graph.

Build a bot for Microsoft Teams

Guide for building bots to leverage the messaging API for agentic use cases.