Connecting to a OneDrive Location

OneDrive for Business is an integral part of Office 365 or SharePoint Server and provides a place in the cloud where you can store, share, and sync your work files.

Prerequisites:

  • Office 365 business account.
  • OneDrive business subscription (Free edition is not supported)
  • At least Files.Read.All and Files.ReadWrite.All permissions for Microsoft Graph API

 MFA (Multi Factor Authentication) is not supported.

The following parameters are required:

Azure application ID The application ID in Azure Active Directory (also called App-ID or Client-ID)
User name The username for access to OneDrive.
Password The password for access to OneDrive.
Use token connection

Selecting this checkbox enables the connection to be authenticated with an OAuth2 token. The endpoint in OAuthToken connection should be configured this way:

Jedox supports OAuth tokens with oauth2PasswordCredential and oauth2RefreshToken authentication methods.

Note: if the Use token connection checkbox is selected, all other input fields (Azure Application ID, User Name, and Password) can remain empty.

Selecting this checkbox enables the connection to be authenticated with an OAuth2 token. The endpoint in OAuthToken connection should be configured this way:

Token endpoint: https://login.windows.net/common/oauth2/token or https://login.microsoftonline.com/<tenantId>/oauth2/token. For https://login.microsoftonline.com/<tenantId>oauth2/v2.0/token token enpoint it is required that upn Claim has to be added to Azure app Token Configuration as it is not provided by default

To connect to One Drive from Jedox, you must create an application (app) in Azure Active Directory (Azure AD). This can be done from one of these Microsoft links: https://portal.azure.com or https://apps.dev.microsoft.com. The application type must be client-native.

The minimum permissions to access One Drive are Files.Read.All and Files.ReadWrite.All, and these permissions must be assigned to the Azure AD app. In the registered app, the permissions must be granted to each account, either by the individual user for their own account or by an administrator of the application for all users.

For more information see https://docs.microsoft.com/en-us/azure/active-directory/active-directory-integrating-applications.

Updated December 18, 2024