Sharepoint

Note:

To sync SharePoint you need to be an admin or application owner within Zilla and have admin access to your organization's Azure Active Directory-AAD application, specifically Global administrator role.
Before syncing SharePoint in Zilla you have to first sync its Parent Application, Azure Active Directory, with Sync All Groups? set to Yes.
To successfully sync changes made to SharePoint like deletion or creation of sites/subsites/memberships of sites/subsites, sync the parent application, Azure Active Directory, before syncing SharePoint instance in Zilla.

Steps to get domain

Login to Azure Active Directory with your admin credentials.
Click Azure Active Directory, and you will be redirected to your tenant’s overview page.

Save the Primary domain for the tenant you want to sync for use in a future step.

Steps To Create a SharePoint Connector

Login to Azure Active Directory with your admin credentials.
Click Azure Active Directory, and you will be redirected to your tenant’s overview page.
Click on App registrations from the left hand side menu.
Click on + New registration, you will be redirected to app registration page.
Fill in the required details:
- Name: Name of the connector, e.g., Zilla SharePoint Connector
- Supported account types: Select the Single tenant option
- Redirect URI: Select type Web and fill in the URI: https://app.zillasecurity.com/api/auth/callback/sharepoint
- Click Register
You will be redirected to app's overview page. Click on API permissions from the left menu.
Click + Add a permission.
Select Microsoft Graph.
Select Application permissions.
Type in sites and select Sites.Read.All. Click Add permisisons.
You will see that permission selected will be added to Microsoft.Graph section. Click Grant admin consent which is required for a successful sync.
Now go back to app’s overview page. Click Add a certificate or secret in the client credentials section.
Click + New client secret.
Type in the description and select the expiration. Click Add.
Copy the client secret Value for future use. NOTE: This is your only opportunity to capture this data, once you leave the page it will be unavailable and you will need to delete the client secret and create a new one.
Go back to app’s overview page. Copy the Application (client ID) for use in a future step.

Setup SharePoint Application Integration on Zilla

Login to Zilla with your admin credentials.

You will see your Zilla Applications tab, click Add Application button at the top right.

You will see Add Application screen with the Search Library tab. Type Sharepoint as search text and click Add to Applications button on the right side of the SharePoint entry.

Fill in the form with appropriate details and click Add to Applications button.

Note:

If there is no AAD application available in the inventory then adding SharePoint will automatically create an instance of AAD (Unmonitored) as the Parent Application.
If there is already an AAD instance present in your inventory, adding SharePoint will automatically set that AAD instance as the Parent Application.
If there are multiple AAD instances present in your inventory, when adding SharePoint you must select the AAD instance which should be the Parent Application for the SharePoint instance.

The SharePoint instance will be added to your Applications inventory, click the SharePoint application name.

Note: Before syncing SharePoint verify that the Parent AAD instance has been synced recently.

You will see a detailed application instance page. Click Sync now in the top right corner. In the Profile tab you can verify the Parent Application matches what was configured when adding the SharePoint instance.
A dialog appears, enable API Integration.
Fill in the configuration details with values saved in earlier steps. Make sure the domain is the same as the parent application.
Click Next.
Click Next again.
Click Done.
On successful sync you will see the following summary.
Click Close.