As part of the process for deploying the SharePoint Online microservice, To manage SharePoint, the EmpowerID SharePoint Online (SPO) microservice requires a service principal application used to authenticate the App Service be registered in the SharePoint tenant to provide Azure AD authentication to the app service that hosts the SPO microservice must be registered in Azure.
Register
...
a service principal for app service auth
...
In Azure, navigate to your Azure Active Directory.
On the Azure Active Directory navbar, click App registrations.
On the App registrations page, click New registration.
Name the application, select the scope for the application (single or multitenant) and click Register.
Once the application is registered, copy the Application (client) ID , and Directory (tenant) ID and Object ID from the Overview page. These values are used later to configure AD authentication for the SharePoint Online App service. The next step is to .
Navigate to the Certificates & secrets blade for the application and upload the base-64 encoded certificate that you have selected to authenticate to the application.
Insert excerpt IL:Azure Cert Requirements IL:Azure Cert Requirements nopanel true Under Manage, click Certificates & secrets.
Under Certificates, click Upload certificate and upload the base-64 encoded certificate.
Under Client secrets, click New client secret. The secret is used by the application to prove its identity when requesting a token.
Copy the secret. You will use it to configure Azure Active Directory Authentication.
...
are using to secure HTTP traffic between EmpowerID and the microservice. The public key certificate that you upload to Azure must have a corresponding private key in the EmpowerID certificate store; otherwise, an error will occur when calling Azure’s API.
Add a client secret and copy the value. You add this value to the Key Vault in your EmpowerID tenant.
...
Next steps
Register Service Principal with SharePoint API Permissions
Create an app service for the SharePoint Online Microservice
Provision a Cosmos DB Account for SharePoint Online
Create a Function app to Update User Profiles
Add application settings to the app service
Add Secret to Key Vault in EmpowerID Tenant
Publish the SharePoint Online Microservice
Configuration of SharePoint Online Inventory - Not Applicable if using EmpowerID SaaS