Skip to main content
You must have at least Application Developer permissions in your Azure account to register applications in Microsoft Entra ID. An administrator must also grant consent for the required API permissions.

Register Your Application in Microsoft Entra ID

To connect SharePoint with StackOne, you need to register an application in Microsoft Entra ID to obtain OAuth 2.0 credentials.

1

Sign in to Microsoft Entra Admin Center

Sign in to the Microsoft Entra admin center as at least an Application Developer. If you have access to multiple tenants, click the Settings (gear) icon in the top-right corner, then select the desired tenant from the list under Directory + subscription.

2

Create a New App Registration

Navigate to Entra ID > App registrations and select New registration.

  • Enter a meaningful Name for your app (e.g., StackOne SharePoint Integration).
  • Under Supported account types, select Accounts in this organizational directory only (single tenant) unless multi-tenant access is required.
  • Select Register to create the app registration.
3

Copy the Application (Client) ID

After registration, you’ll be directed to the application’s Overview page. Copy the Application (client) ID value and store it securely for use later.

Configure Redirect URI

Set up the OAuth 2.0 callback URL to enable authentication flow between StackOne and SharePoint.

1

Navigate to Authentication Settings

From your app’s Overview page, select Authentication from the left menu under Manage.

2

Add Platform Configuration

Click Add Redirect URI, then select Web.

3

Set the Redirect URI

In the Redirect URIs field, enter the StackOne OAuth callback URL (https://api.stackone.com/connect/oauth2/sharepoint/callback) and click Configure.

Configure API Permissions

Grant your application the necessary Microsoft Graph API permissions to access SharePoint data. API access is controlled by the permissions granted here, not by scopes requested in the OAuth token.

1

Open API Permissions

From the left menu under Manage, select API permissions.

2

Add Microsoft Graph Permissions

Click Add a permission, then select Microsoft Graph.

  • Select Delegated permissions to view the list of permissions.
  • For read-only access, add Sites.Read.All and Files.Read.All.
  • For read-write access, add Sites.ReadWrite.All and Files.ReadWrite.All.
  • Click Add permissions to save.
3

Grant Admin Consent

Click Grant admin consent for [tenant name] and select Yes to consent on behalf of all users in your tenant. After granting, verify that Granted for [tenant name] appears under the Status column. Without admin consent, API calls will return 403 Forbidden errors regardless of token contents.

Generate Client Secret

Create a client secret that will be used to authenticate your application with SharePoint.

1

Navigate to Certificates & Secrets

From the left menu under Manage, select Certificates & secrets.

2

Create a New Client Secret

Under the Client secrets tab, click New client secret.

  • Add a Description (e.g., StackOne Integration Secret).
  • Select an expiration period.
  • Click Add.
3

Copy the Client Secret Value

Immediately copy the Value of the newly created client secret and store it securely for use later. This value will only be shown once and cannot be retrieved again.

Creating the StackOne Connector Profile

To create the Connector Profile in StackOne for SharePoint:
1

Navigate to Connector Profiles

Login to StackOne and navigate to Connector Profiles
2

Create New Connector Profile

  • Click + Connector Profile
  • Search for and select SharePoint
  • Select Type as OAuth 2.0
  • Fill out the fields using details retrieved from your provider:
    • Client ID
    • Client Secret
    • Scopes (Optional)
  • (Optional) Select Actions to be enabled for this Connector Profile
  • Click Create profile
Congratulations! The new Connector Profile will now show up in your project ready to be used. You can now continue to Link Accounts for SharePoint.