SharePoint Online Application (Certificate) Account
In this article
Overview
You can use this account type to connect SharePoint Online Snaps with data sources that use a Certificate account. SharePoint Online certificates enable secure data exchange and meet certain security standards.
Prerequisites
Valid Client ID
Valid KeyStore credentials
Account Settings
Asterisk ( * ): Indicates a mandatory field.
Suggestion icon ( ): Indicates a list that is dynamically populated based on the configuration.
Expression icon ( ): Indicates the value is an expression (if enabled) or a static value (if disabled). Learn more about Using Expressions in SnapLogic.
Add icon ( ): Indicates that you can add fields in the fieldset.
Remove icon ( ): Indicates that you can remove fields from the fieldset.
Field Name | Field Type | Description | |
|---|---|---|---|
Label*
| String | Specify a unique label for the account.
Default Value: None | |
Client ID*
| String | Specify the Client ID associated with your Azure application. You can create the Client ID as advised by your application provider. Learn more about generating the Client ID.
| |
Key store*
| String | Specify the location of the key store file. It can be in SLDB or at any other unauthenticated endpoint.
| |
KeyStore password*
| String | Specify the password for the keystore. If the key associated with the alias has a password, it must be the same as the keystore password. Default Value: None | |
Application scope
| String | Specify the scope of the application's execution. Default Value: https://graph.microsoft.com/.default offline_access | |
Access token
| String | Auto-generated after authorization. The access token associated with the Azure application is used to make API requests on behalf of the user linked to the client ID. Default Value: None | |
Access token expiration
| Integer | Auto-generated after authorization. Indicates the duration (in EPOCH time, seconds) for which the access token is valid. Default Value: Current Time + 3600 seconds | |
OAuth2 token endpoint*
| String | Specify the token endpoint to get the access token. Default Value: https://login.microsoftonline.com/<tenantName>.onmicrosoft.com/oauth2/v2.0/token Example: https://login.microsoftonline.com/testTenant.onmicrosoft.com/oauth2/v2.0/token | |
Token endpoint config | Use this fieldset to provide custom properties for the OAuth2 token endpoint. | ||
Token endpoint parameter
| String | Specify the name for the token endpoint parameter.
| |
Token endpoint parameter value
| String | Specify the value for the parameter, typically the default scope.
Default Value: None | |
Auto-refresh token
| Checkbox | Select this checkbox to enable automatic token refresh. If you deselect this checkbox, the token will expire and will not be refreshed automatically. Default Value: Deselected | |
Upload your certificate to the Microsoft identity platform
The certificate can be uploaded to the registered app for your client application on the Microsoft Identity platform using the following steps:
Log in to the Azure portal and navigate to your client application.
Select Certificates & secrets > Certificates.
Select the Upload certificate and select the certificate file to upload.
Select Add. Once the certificate is uploaded, the thumbprint, start date, and expiration values are displayed.
Learn more: Application Configuration in the Azure Portal and Upload Certificate.
Troubleshooting
Error | Reason | Resolution |
|---|---|---|
500- Internal Server Error | An invalid private key was provided in the key-store file, or an incorrect Client ID was entered. | Ensure that you have provided the correct and valid KeyStore password or Client ID for the account and have granted the required access permissions to the application. |
Related Links
Have feedback? Email documentation@snaplogic.com | Ask a question in the SnapLogic Community
© 2017-2025 SnapLogic, Inc.