Issue

  • We are missing Sharepoint REST API permissions for the app.

Resolution

Since the graph API does not support many of our sharepoint use cases (e.g. site page permissions), we need to use the Sharepoint REST API. This will need to be done for every Azure app.

Default Setup (Sites.FullControl.All)

Prerequisites
  • Provisioning REST API permissions directly through Azure portal requires your application to be authenticated through the certificate-based method.
  • For your application in Azure, on the left side of the applications pane, navigate to Manage > API Permissions.
  • Click Add a permission and select Sharepoint. Choose Application permissions and add Sites.FullControl.All These steps require being either a tenant administrator, or a site administrator of the associated site collection.
Remediation Steps
  • If you are currently using a client secret, contact support to enable the new certificate-based method for setup. This is not required, but recommended for the best setup experience.
  • This requires creating a certificate and uploading it to Azure. You can upload the same certificate to all of the apps you created.
  • Then, you must upload the certificate and associated private key to Glean through Sharepoint connector setup.

Sites.Selected Setup

Remediation Steps Please follow the steps oulined here For additional assistance, please contact Glean Support at https://support.glean.com