The SharePoint connector enables Workleap AI to retrieve and index content from SharePoint sites, allowing users to search for and access documents based on their authorized permissions.
To authenticate a SharePoint connection via OAuth, a Tenant ID, Application ID, and Client Secret are required. This guide will walk through the process of how to configure Azure and obtain both.
Note: This guide requires admin access to Microsoft Azure to complete.
1. Find your Tenant ID
Sign into Azure.
Switch to the tenant you'd like to connect with Workleap AI.
Find Microsoft Entra ID.
In the left menu, expand Manage, and click on Properties.
Copy the Tenant ID field.
2. Create your Application ID
In the left menu, expand Manage, and click on App registrations.
Click New registration.
Enter registration details:
In the top field, enter an app name. This can be anything, but we recommend using "Workleap AI" here.
Select an appropriate account type in Supported account types. We recommend the default option of "Accounts in any organizational directory (Any Azure AD directory - Multitenant)" here.
Leave the Redirect URI field empty.
Click Register. You will be taken to the application page. This page will show you the Client ID. Copy this down.
3. Create a Secret ID
On the application page, click Certificates & secrets.
Click New client secret.
Enter a Description (we recommend using "Workleap AI" here) and set Expires to "24 months (730 days)". Then, click Add.
Copy the Secret ID.
IMPORTANT: This is the only time the secret ID will be visible in the app. Be sure to copy and store it securely for future use.
4. Assign API Permissions
Go to Manage > API permissions.
Click Add a permission.
Scroll down to find SharePoint. Open it.
Select Applications Permissions.
Check the following items, then Add Permissions:
User.Read.All (this will be enabled by default)
Files.Read.All
Group.Read.All
Sites.FullControl.All
Sites.Read.All
Click Grant admin consent to assign your API Permissions.
5. Set up SharePoint REST API
Because the Graph API does not support several of our SharePoint use cases (such as site page permissions), we need to rely on the SharePoint REST API.
Go to
[sharepoint-domain]-admin.sharepoint.com/_layouts/15/appinv.aspx. For example, if your SharePoint URL is acme.sharepoint.com, then replace[sharepoint-domain]withacme.Use the Client ID from the previous step to locate the app.
In the Permission Request XML field, paste the following:
<AppPermissionRequests AllowAppOnlyPolicy="true"> <AppPermissionRequest Scope="http://sharepoint/content/tenant" Right="FullControl" /> <AppPermissionRequest Scope="http://sharepoint/content/sitecollection" Right="FullControl" /> <AppPermissionRequest Scope="http://sharepoint/content/sitecollection/web" Right="FullControl" /></AppPermissionRequests>
4. Click Create.
5. When prompted whether you trust this application, click Trust It.
6. Connect to SharePoint in Workleap AI
Head over to Workleap AI Settings > Knowledge Sources.
Click the Connect to app button and select SharePoint.
Fill in the SharePoint connection details using the Tenant ID, Application ID, and Secret ID from earlier, and click Connect to SharePoint.
Select which SharePoint sites that Workleap AI will have access to and click Begin initial sync.
You're done! Workleap AI will process data from your selected SharePoint sites, and use the knowledge within them to craft more meaningful responses to prompts. It may take several minutes to hours for SharePoint data to fully process, depending on the amount of content selected.