Enable integration in Microsoft Azure
The following steps are performed in Microsoft Azure. Your Azure admin will require your organization's custom domain URL.
Custom domains are in the following form:
-
[yourorg].my.salesforce.com
Your organization's custom domain can be found by going to Setup > Company Settings > My Domain:
Register a Calendar integration app
You must create an app for Outlook calendar integration in your Microsoft Azure account. This app provides some details such as who can use the integration, and your organization's unique custom domain.
-
Sign in to your Microsoft Azure account as an administrator.
-
Go to App registrations.
Select +New registration .
TipThe quickest way to find this in your Azure account is to search for "app registration" in the search bar:
Alternatively, you can use the following URL to access the Register an application page directly:
Copyhttps://portal.azure.com/#view/Microsoft_AAD_RegisteredApps/CreateApplicationBlade
-
Complete the required information as follows:
-
Name: give the app a descriptive name, such as Sage People Calendar Integration
-
Supported account types: select Accounts in this organizational directory only
-
Redirect URI: select Web and enter the URI for your organization. This consists of your organization's custom domain, and a URL path, in the form shown below:
Copyhttps://<custom_domain_URL>/apex/SgPpl__DelegatedAccessRedirect
For example:
https://yourorg.my.salesforce.com/apex/SgPpl__DelegatedAccessRedirect
Find your organization's custom domain by going to Setup > Company Settings > My Domain.
What is a custom domain?Custom domains are in the following form:
-
[yourorg].my.salesforce.com
Your organization's custom domain can be found by going to Setup > Company Settings > My Domain:
-
-
- Select Register to create the app.
Copy the client ID and tenant ID
Make note of the client ID and tenant ID for the app. These values are required in order to connect your Sage People organization to your Azure account.
-
Go to App registrations and select the app you just created.
-
Copy the following values for the app and store them safely. You will need these values later.
-
Application (client) ID
-
Directory (tenant) ID
-
-
If you are setting up the Azure integration on behalf of a Sage People administrator, ensure you pass these details to the administrator for the organization. They will need these details as part of Sage People setup. See Add Azure details to Sage People.
Create a client secret
Create a client secret that is used to authenticate your Sage People organization when it connects to Microsoft Azure.
- Go to App registrations and select the app you have created.
-
Select Add a certificate or secret.
-
Select +New client secret.
-
Enter a Description for the secret, such as Sage People Calendar Integration.
Set the Expires value for the secret. We recommend you select a value of 12 months or less.
Remember to create a new secret before it expires, and update this in your Sage People organization. See Add Azure details to Sage People.
-
Select Add. The client secret is displayed. Ensure you copy the secret Value and store it safely. You will need this value later.
Important The client secret value is only displayed immediately after creating it. Ensure you copy the value before leaving the page. -
If you are setting up the Azure integration on behalf of a Sage People administrator, ensure you pass the client secret value to the administrator for the organization. They will need this as part of Sage People setup. See Add Azure details to Sage People.
Add API permissions
You must grant permissions for the app to read from and write to the Outlook Calendar for your Active Directory users. These permissions are required to generate Calendar entries for Sage People events.
-
Go to App registrations and select the app you have created.
In the left menu, select API permissions.
-
Select +Add a permission.
-
Select Microsoft Graph.
-
Select Delegated permissions.
-
Select the following permissions.
Under OpenId permissions, select:
-
offline_access
Scroll to the Calendars section, and select:
-
Calendars.ReadWrite
-
- Select Add permissions.
- Beside the User.Read permission, select the 3 dots context menu, and select Remove permission. This permission is added by default, but is not required.
-
Select the Grant admin consent button above the permissions list. This grants the required permissions for all users in your Azure tenant.
- Select Yes to confirm.
Provide information to the HR administrator
If the Microsoft Azure and Sage People setup are being performed by different individuals, make sure you share the information saved as part of the preceding steps with the Sage People HR administrator.
-
Application Client ID
-
Application Tenant ID
-
Client Secret value.
This information will be needed in the next step, Add Azure details to Sage People.