\\
Start at the __Microsoft Azure Portal__: [Link|https://azure.microsoft.com/en-us/features/azure-portal/]\\
\\
__Application registration:__ Navigate to App registrations in the Azure Portal. Click on __New registration__ to create a new application.\\
\\
[SharePoint Integration/new_registration.png]\\
\\
The Redirect URL must end with __register_microsoft_graph_api/__.\\
\\
{{{

    http://localhost:9090/register_microsoft_graph_api/

}}}\\
or
{{{
    
    https://your.crushftp.domain.com/register_microsoft_graph_api/
    
}}}\\
\\
__Secret key__: A new client secret must be created. Go to __Certificates & secrets__, and generate a new client secret by clicking on __New client secret__. Ensure you copy over the __value__ immediately!\\
\\
[SharePoint Integration/new_secret.png]\\
\\
[SharePoint Integration/secret_value.png]\\
\\
\\
Configure the __API Permissions__:\\
\\
[attachments|app_reg_config_permissions.png]\\
\\
Get Client ID and Tenant ID from App registration -> Overview.\\
\\
[MicrosoftMails/client_id.png]\\
\\
__Group info:__\\
\\
You can add groups claim to the token.\\
\\
[attachments|microsoft_group_info.png]\\ 

__!!!Continue on:__ [CrushOIDC]\\
\\