I have created two applications in a microsoft office 365 account. When I saw the permission details for these two apps, I found one difference. For the first application, "OFFICE 365 SHAREPOINT ONLINE" was present, on the other hand it was absent in case of second app.
Can someone please explain why it was present in first application but absent in second one?
Also how to add the missing permission "OFFICE 365 SHAREPOINT ONLINE" for an application?
Sharepoint online Permission in first application
It looks in your screenshot like you're looking at the Enterprise Apps blade. I believe that will only show the permissions that the app has actually requested.
To change which permissions show up there you'll actually need to change the permissions being requested by the app which would happen under either the App Registrations or App Registrations (Preview) blade (slightly farther down in the list where you already are) depending on where you originally registered the app.
You should only need SharePoint permissions directly though if you plan to call SharePoint APIs that aren't covered by Microsoft Graph. You can do many tasks in Microsoft Graph directly so make sure you actually need the SharePoint permissions before requesting them.
Related
there is a requirement in my project to create couple of anonymous pages in SharePoint Online for guest users. I know this is possible with SharePoint On Premise, however just wanted to check if its possible in SharePoint Online also to create anonymous pages, because in SharePoint Online, its always required to authenticate the user against Azure Active Directory.
Business Scenario - Guest users should be able to access 1-2 anonymous pages, after that they need to login into the application to access further application features and functionalities.
Anonymous access is not supported in SPO sites from safety reasons and because sharing with external users is well done through Azure Active Directory.
However, the "anonymous page" behavior can be reproduced in SPO as following:
Go to Microsoft 365 admin center
Select SharePoint
Go to Sites and select Active Sites
Select the Site Collection you want, go to Policies and select "Anyone" radio button
see screenshot
Also, when doing this be careful at what you have set here: Microsoft 365 admin center->Policies->Sharing (do not forget to pay attention on safety and security)
see screenshot
Basically, all you need can be achieved by using the Admin center. This link contains more details on what I have described: https://code2care.org/tutorial/how-to-enable-anonymous-public-access-microsoft-office-365-sharepoint-online-site-collection-file-folder-without-login
Hope it helps, best regards!
We have an app that allows scanning mailboxes in Exchange Online (Office 365). This app works fine, using the Microsoft Graph API User.Read.All permission to first fetch all users, and then Mail.Read to read their mailboxes.
Problem: One customer wants to restrict our app to work over a single mailbox, as a test of our app, without granting our app access to their whole tenancy.
It looks like this is possible using a "mail-enabled security group": https://learn.microsoft.com/en-us/graph/auth-limit-mailbox-access . So the Mail.Read permission is not a problem.
But our app also lists users, so it needs the User.Read.All permission. I cannot figure out how to set this up for the "security group". Any ideas?
AFIK, this is not possible yet. Profile access in AD cannot be restricted as mailbox access in Exchange. We are facing the same issue.
When I try to publish my app on the Gsuite Marketplace via GCP, I find no way to change the setting 'Visibility'. Event if the app has never been published.
Between the two options (My Domain - Public), My domain is selected and can't be switched to Public, so nobody has access to my app.
Any help?
I've tried to contact the support and find help on forums but no answer at all.
First step, I'd recommend reviewing Choosing where to publish to ensure that you've published to the correct location. As noted under Publish your app (before you publish), your app is reviewed to determine if it meets the requirements for the relevant store. Additionally, your application may also have to undergo OAuth verification (I think this could be the problem) , and security assessment if it accesses user data, such as Gmail, Drive, Contacts, or Calendar
If your app is exempt from verification or if you've already undergone assessment and been approved, and your issue persists, I'd recommend contacting Marketplace Developer Support, via the below steps, who can assist you with your publishing issue.
Navigate to the new Developer Dashboard.
Click Contact Us.
The Developer Support contact us form is displayed.
I've tried to contact the support and find help on forums but no answer at all.
How did you contact Google Support? They have many teams and sometimes agents are not aware of the scope of support. Personally I would contact GCP Support first to verify your App in GCP, once they confirm everything is working from their end they need to route the case to GSuite with an Admin Console specialist to debug the problem
I am working on Document upload feature present in MS CRM 2011. However while uploading a document we have to provide share point URL.
Could you please help me out how to get share point URL?
I don't have no idea about share point
Microsoft Dynamics CRM and Sharepoint are different products. You need to have installed Sharepoint in order to use it. The URL required to configure CRM will be the address of the document library where you wish CRM to start storing your documents.
In any case, I think that this question best belongs on Super User so I have flagged it to be moved.
When you install SharePoint and create your first web application you can choose what the majority of the URL looks like. it will also be the URL you use to navigate to the site.
What I have?
I have a SharePoint 2010 web application with FBA configured and it is exposed to Internet. The root site collection has a huge hierarchy and each site has document libraries with many documents.
There are more than 10 site groups defined and some of them has access only to some sites.
What problem am I facing?
Everything was working fine and suddenly I am facing a problem in Enterprise Search.
When a user searches, the search result displays everything (including the site where user does not have permission) and clicking on a result it either opens the item (page/document) or shows Access denied error depending on whether the user has permission on that item.
Can someone tell me why is this happening?
We finally figured out the problem with this one.
We had given Full Read permissions to NT AUTHORITY\Authenticated Users for All zones in User Policy of the web applications in question. I am not sure of the reason for giving this permission. We removed it. Then, a full crawl fixed the issue.
Thanks!