- Getting started
- Notifications
- Licensing
- Troubleshooting
- Connector Builder
- Act! 365
- ActiveCampaign
- Active Directory - Preview
- Adobe Acrobat Sign
- Adobe PDF Services
- Amazon Bedrock
- Amazon Connect
- Amazon Polly
- Amazon SES
- Amazon Transcribe
- Amazon Web Services
- Anthropic Claude
- Asana
- AWeber
- Azure AI Document Intelligence
- Azure Maps
- BambooHR
- Box
- Brevo
- Calendly
- Campaign Monitor
- Cisco Webex Teams
- Citrix Hypervisor
- Citrix ShareFile
- Clearbit
- Confluence Cloud
- Constant Contact
- Coupa
- Customer.io
- Datadog
- Deputy
- Discord
- DocuSign
- Drip
- Dropbox
- Dropbox Business
- Egnyte
- Eventbrite
- Exchangerates
- Exchange Server - Preview
- Expensify
- Facebook
- Freshbooks
- Freshdesk
- Freshsales
- Freshservice
- GetResponse
- GitHub
- Gmail
- Google Cloud Platform
- Google Docs
- Google Drive
- Google Forms - Preview
- Google Maps
- Google Sheets
- Google Speech-to-Text
- Google Text-to-Speech
- Google Tasks - Preview
- Google Vertex
- Google Vision - Preview
- Google Workspace
- GoToWebinar
- Greenhouse
- Hootsuite
- HTTP Webhook - Preview
- Hubspot CRM
- HubSpot Marketing
- HyperV - Preview
- Icertis
- iContact
- Insightly CRM
- Intercom
- Jina.ai
- Jira
- Keap
- Klaviyo
- LinkedIn
- Mail - Preview
- Mailchimp
- Mailgun
- Mailjet
- MailerLite
- Marketo
- Microsoft 365
- Microsoft Azure
- Microsoft Azure Active Directory
- Microsoft Azure OpenAI
- Microsoft Dynamics 365 CRM
- Microsoft OneDrive & Sharepoint
- About the Microsoft OneDrive & SharePoint connector
- Microsoft OneDrive & SharePoint authentication
- Microsoft OneDrive & SharePoint events
- Microsoft Outlook 365
- Microsoft Sentiment
- Microsoft Teams
- Microsoft Translator
- Microsoft Vision
- Miro
- NetIQ eDirectory
- Okta
- OpenAI
- Oracle Eloqua
- Oracle NetSuite
- PagerDuty
- PayPal
- PDFMonkey
- Perplexity
- Pinecone
- Pipedrive
- QuickBooksOnline
- Quip
- Salesforce
- Salesforce Marketing Cloud
- SAP BAPI
- SAP Cloud for Customer
- SAP Concur
- SAP OData
- SendGrid
- ServiceNow
- Shopify
- Slack
- SmartRecruiters
- Smartsheet
- Snowflake
- Stripe
- Sugar Enterprise
- Sugar Professional
- Sugar Sell
- Sugar Serve
- System Center - Preview
- TangoCard
- Todoist
- Trello
- Twilio
- UiPath Data Service
- UiPath GenAI Activities
- X (formerly Twitter)
- Xero
- watsonx.ai
- WhatsApp Business
- WooCommerce
- Workable
- Workday
- Workday REST
- VMware ESXi vSphere
- YouTube
- Zendesk
- Zoho Campaigns
- Zoho Desk
- Zoho Mail
- Zoom
- ZoomInfo
Integration Service user guide
Microsoft OneDrive & SharePoint authentication
In Integration Service, when creating a connection to one of our Microsoft Graph-based connectors, you can choose between three authentication options:
- OAuth 2.0 Authorization code – connects to the UiPath public application.
- OAuth 2.0 Client credentials - uses a service account.
- Bring your own OAuth 2.0 app – connects to a private application you create.
For more details regarding the different authentication types, refer to the How to connect to Microsoft 365 activities guide.
Environment
When you first access the Authentication screen, you can select an Environment. The available options are:
- Office 365 (default)
- US Government L4 - Public Sector domain
- US Government L5 - Public Sector domain
- China
For details, refer to Microsoft Graph and Graph Explorer service root endpoints.
Many organizations require an administrator's consent before creating a connection to an external application. The admin consent workflow requires an admin to approve the app registration to specific users or groups before a connection is established. For more information, refer to Overview of admin consent workflow and User and admin consent in Microsoft Entra ID in the Microsoft documentation.
Integration Service impersonates the user that creates the connection. The user’s credentials offer access to all of the same resources that they have in the given application. If you share the connection, every change made to Microsoft SharePoint or OneDrive with that connection is made on behalf of that user.
The connector requests the following permissions/scopes:
- OAuth 2.0 Authorization code:
offline_access,Files.Read,Files.Read.All,Files.ReadWrite,Files.ReadWrite.All,Sites.Read.All,Sites.ReadWrite.All,Group.Read.All,Group.ReadWrite.All,profile,openid,email,User.Read.All. - OAuth 2.0 Client credentials:
- Minimal scopes for creating a connection:
User.Read.All,Files.Read.
- Minimal scopes for creating a connection:
- Bring your own OAuth 2.0 app:
- Minimal scopes for creating a connection:
openid,offline_access,User.Read.All,Files.Read. - Minimal list of scopes required for OneDrive triggers:
openid,offline_access,User.Read.All,Sites.Read.All– for events on SharePoint sites;Group.Read.All– for events on groups and calendars;Files.Read.All– for all the remaining event types.
- Minimal scopes for creating a connection:
common scope. This means you use only the permissions configured for that application in Azure. You can also declare additional
scopes at connection creation, using the Scopes field. You will then be asked to grant the additional consent during sign-in.
-
Select Integration Service from Automation CloudTM.
- From the Connectors list, select Microsoft OneDrive & SharePoint. You can also use the search bar to narrow down the connector.
- Select the Connect to Microsoft OneDrive & SharePoint button.
- You are now redirected to the connection page.
You can choose between two authentication types: OAuth 2.0 Authorization code or Bring your own OAuth 2.0 app.
- If you select OAuth 2.0 Authorization code, select Connect, then authenticate using your Microsoft email address and password.
- If you select OAuth 2.0 Client credentials, you must provide an Account. This represents the account used to impersonate a user.
- If you select Bring your own OAuth 2.0 app, you must provide a Client ID and Client secret, the Tenant ID, and the Scopes
you may need to interact with different activities. Check out the activities' documentation to learn what scopes they require.
Note: If you are using a multitenant application, keep the default value for the Tenant ID (
common). If you are using a single tenant application, retrieve the Tenant ID from Azure. Refer to How to find your Microsoft Entra tenant ID.
- Your connection has been added.
To learn how to create an application, go to Microsoft's official documentation and follow the described steps: Register an application with the Microsoft identity platform.
Requirements
When creating your own application to use with Integration Service, you must consider the following requirements:
- You must configure the application as a Multitenant or Single tenant application.
- You must configure a Web application.
- You must configure a Web Redirect URI. The Redirect URI (or callback URL) for your OAuth 2.0 application is provided in the authentication screen when creating a connection: https://cloud.uipath.com/provisioning_/callback.
- You must set up delegated permissions. For more information, refer to Permissions in the Microsoft official documentation.
- Generate a client secret for your application.
The connector uses Microsoft Graph API. Refer to the Microsoft Graph permissions reference page for details on all permissions.
After you create your application, use its Client ID and Client Secret to create a connection with the Microsoft connectors.
Refresh tokens for OAuth applications can be invalidated or revoked at any time by Microsoft. This can happen for different reasons, such as timeouts and revocations. For details, refer to Microsoft's official documentation regarding token expiration.
