Skip to main content

Microsoft 365 plugin

Documentation Team
  • Updated

Microsoft 365 plugin

Visit our website to see the data that you can access if you use this plugin to add the data source to SquaredUp:

Microsoft 365

Analyze and report on your Microsoft 365 usage.

How to add a Microsoft 365 data source

Setup App Registration

  1. Log in to the Azure portal.

  2. In Azure Active Directory > App registrations create a new app registration, using the default options (no redirect URI is needed).

  3. Make a note of the Application (client) ID and the Directory (tenant) ID.

  4. In Certificates and secrets add a new secret, and make a note of the value.

    For more information see Microsoft: Use the portal to create an Azure AD application and service principal that can access resources

Configure App Registration access to your Microsoft Graph APIs

  1. Click API permissions > Add a permission

  2. Click Microsoft Graph from the Microsoft APIs section.

  3. Important: Click Application permissions.

  4. Add the following permissions:

    AuditLog.Read.All

    Device.Read.All

    Directory.Read.All

    Group.Read.All

    Reports.Read.All

    Sites.Read.All

  5. Click Add permissions.

  6. Admin consent is required for these permissions to become active. Click Grant admin consent for <your organization>

    If you don’t have the necessary rights in Azure AD to complete this step, ask a suitable person to grant these permissions.

    After adding permissions to your API, you should see the selected permissions under Configured permissions, as shown in the following image.

You might also notice the User.Read permission for the Microsoft Graph API. This permission is added automatically when you register an app in the Azure portal.

For more information see Microsoft Quickstart: Configure a client application to access a web API

Add a Microsoft 365 data source to SquaredUp

  1. In SquaredUp browse to Data Sources > Add data source and search for the data source. Alternatively, browse to Settings > Data Sources > Add data source.

  2. Enter the Directory (tenant) ID, Application (client) ID, and Client secret noted down earlier.

  3. Optionally, select whether you would like to restrict access to this data source instance. By default, restricted access is set to off.

    ClosedRestrict access to this workspace?

    The term data source here really means data source instance. For example, a user may configure two instances of the AWS data source, one for their development environment and one for production. In that case, each data source instance has its own access control settings.

    By default, Restrict access to this data source? is set to off. The data source can be viewed, edited and administered by anyone. If you would like to control who has access to this data source, switch Restrict access to this data source? to on.

    Use the Restrict access to this data source? dropdown to control who has access to the workspace:

    • By default, the user setting the permissions for the data source will be given Full Control and the Everyone group will be given Link to workspace permissions.

    • Tailor access to the data source, as required, by selecting individual users or user groups from the dropdown and giving them Link to workspace or Full Control permissions.

    • If the user is not available from the dropdown, you are able to invite them to the data source by typing in their email address and then clicking Add. The new user will then receive an email inviting them to create an account on SquaredUp. Once the account has been created, they will gain access to the tenant.

    • At least one user or group must be given Full Control.

    • Admin users can edit the configuration, modify the Access Control List (ACL) and delete the data source, regardless of the ACL chosen.

    ClosedData source access levels

    Access Level:

    Link to workspace

    • User can link the data source to any workspace they have at least Editor permissions for.
    • Data from the data source can then be viewed by anyone with any access to the workspace.

    • User can share the data source data with anyone they want.

    • User cannot configure the data source in any way, or delete it.

    Full Control
    • User can change the data source configuration, ACL, and delete the data source.

    See Access control for more information.

  4. Click Test and add to validate the data source configuration.

    ClosedTesting outcomes

    • Testing passed – a success message will be displayed and then the configuration will be saved.

    • Testing passed with warnings – warnings will be listed and potential fixes suggested. You can still use the data source with warnings. Select Save with warnings if you believe that you can still use the data source as required with the warnings listed. Alternatively, address the issues listed and then select Rerun tests to validate the data source configuration again. If the validation now passes, click Save.

    • Testing Failed – errors will be listed and potential fixes suggested. You cannot use the data source with errors. You are able to select Save with errors if you believe that a system outside of SquaredUp is causing the error that you need to fix. Alternatively, address the issues listed and then select Rerun tests to validate the data source configuration again. If the validation now passes, click Save.

    You can edit any data source configurations at any time from Settings > Data Sources.

Related articles

Comments

0 comments

Please sign in to leave a comment.