Connecting Microsoft SharePoint
Last updated
Last updated
In order to connect Cloud Protector to your SharePoint file system, your administrator will need to log into and collect a few values (Make sure to use the Azure link provided):
Site Slug (SharePoint site name used in the URL)
Drive Name (The document library you want to access)
Tenant Id
Client Id
Client Secret (Copy and save the secret right after creating it; you won't be able to view it later.)
The Site Slug is the identifier for your SharePoint site used in its URL.
Example:
If your SharePoint URL looks like this:
https://your-domain.sharepoint.com/sites/HRDocuments
Then your Site Slug is: HRDocuments
To find it:
Go to your SharePoint site in a browser
Look at the part of the URL after /sites/ — that is your Site Slug
Each SharePoint site can have multiple document libraries (drives). You’ll need to specify the Drive Name that you want Cloud Protector to connect to.
To get the Drive Name:
Open your SharePoint site
Click Documents or the library you want to use
The name at the top is the Drive Name
(e.g., "Documents", "Policies", or "Shared Files")
Make sure to copy the name exactly as it appears.
Name: Confidencial Cloud Protector App
Settings: account in this org only
3.2 API Permissions > Add permissions > Microsoft Graph
3.3 Application permission > Search: Files.ReadWrite
3.4 Select Files.ReadWrite.All > Add Permissions
3.5 Delegate Permissions > Search: Files.readwrite
3.6 Select Files.ReadWrite
3.7 Select Files.ReadWrite.All > add Permissions
3.8 Application Permission > Search Sites.read.all
3.9 Select: Sites.Read.All > Add Permissions
3.10 Delegated Permissions > Search User.read
3.11 Select: User.Read
3.12 Select: User.Read.All > Add permissions
3.13 Application Permissions > User.Read.All
3.14 Select: User > User.Read.All > Add permissions
Navigate to: App Registration > All Applications > Confidencial Cloud Protector App (Your new application)
Collect the two values and save on a separate sheet:
Application (Client) ID
Directory (Tenant) ID
After your app is registered, you can create a client secret. Click the link next to Client Credentials (also shown) and add a secret.
Be sure to copy the secret value (not the secret ID) immediately after creation—you won't be able to see it again once you leave the page!
6.1 Navigate to Cloud Protector > Settings > Add Source
6.2 Select Type > SharePoint
Give your source a name that will help you recognize it.
Input the Path: the actual file path in the cloud storage that you want to analyze, encrypt, or both. Leaving this as "root" will include the whole file system.
Input the other values you have gathered.
Click “Test Connection & Save”.
SharePoint Connection is now Complete.
An application must be created within with permissions granted to Confidencial.
3.1 Navigate to the page and create an application.
