Skip to main content

Microsoft OneDrive/Sharepoint Connector

Guide to creating an Azure App for Savant Integration

Updated over 3 weeks ago

This guide walks you through setting up an Azure application for authenticating and connecting Savant with Microsoft OneDrive or SharePoint. Follow these steps to register your app, assign the correct permissions, and gather the necessary credentials.

Features

  • Connect Savant to OneDrive or SharePoint Online

  • Enable secure OAuth-based authentication with Microsoft Graph

  • Control access via Azure AD roles and groups

Requirements

Before you begin, ensure the following:

  • Azure Active Directory admin privileges

  • Access to the Azure Portal

  • Users/groups assigned to the app for authentication

  • Savant organization access for storing or using the credentials

Connection Methods

  • Azure Application OAuth

Azure Application OAuth

Step 1: Register an Application in Azure

  • Log in to the Azure Portal as an administrator.

  • Check for Azure Active Directory and g

  • Go to App registrations in the left sidebar.

  • Click + New registration.

  • Fill in the following:

    • Name: Savant OneDrive Integration

    • Supported account types: Select Accounts in this organizational directory only

    • Redirect URI:

      • Type: Web

      • URI: https://app.savantlabs.io/api/callback

  • Click Register.

Step 2: Note Down Key IDs

  • After registration, go to the Overview tab of the newly created app.

  • Copy and save the following values:

    • Application (client) ID

    • Directory (tenant) ID

Step 3: Create a Client Secret

  • In the left menu, click Certificates & secrets.

  • Under Client secrets, click + New client secret.

  • Provide a description and choose an expiration period.

  • Click Add.

  • Note down the generated client secret value immediately. This is the only time it will be visible.

Step 4: Configure API Permissions

  • Navigate to API permissions in the left menu.

  • Click + Add a permission.

  • Choose Microsoft Graph.

  • Select Delegated permissions.

  • Add the following:

    • offline_access

    • openid

    • Files.ReadWrite.All

    • Sites.ReadWrite.All

  • Click Add permissions.

  • Click Grant admin consent for [your tenant] to approve the permissions for all users.

Step 5: Assign Users or Groups

  • Navigate to Enterprise Applications in the Azure Portal.

  • Search for and select the Savant OneDrive Integration app.

  • Go to Users and groups under Manage.

  • Click + Add user/group to assign access to intended users.

Step 6: Connecting to Savant

In Savant, create a OneDrive or SharePoint system using the credentials gathered above:

  • Directory (tenant) ID

  • Application (client) ID

  • Client Secret

Optionally, your System Admin can securely store these values in the Organization Vault. Once stored, analyst users can create connections using them from their Workspace.

Troubleshooting

  • To see the app created wait a few minutes after registration or check for the correct tenant.

  • In case the redirect URI is not accepted ensure you chose "Web" and used the correct URL: https://app.savantlabs.io/api/callback.

  • Ensure you clicked "Grant admin consent" after setting API permissions to avoid further permissions

  • Sometimes the client secret becomes invalid so ensure that the secret is regenerated and make sure to copy the Value, not the Secret ID.

  • Incase the users are unable to authenticate ensure that they are assigned to the app under Users and groups.

Did this answer your question?