Before you create a catalog source, ensure that you have the information required to connect to the source system.
Perform the following tasks:
•Register for the Microsoft Graph application in Azure Active Directory admin center to enable user authentication. For information about how to register the Microsoft Graph application, see Build Java apps with Microsoft Graph.
•Authorize the Microsoft Graph application.
To authorize the Microsoft Graph application, use the following format: https://login.microsoftonline.com/<tenant ID>/oauth2/v2.0/authorize?client_id=<client ID>&response_type=code&redirect_uri=<redirect URL>&response_mode=query&scope=user.read profile offline_access Files.Read openid&state=12345
Note: The user who created the Microsoft Graph application can share the Tenant ID, Client ID, and Redirect URL details with users who want to extract metadata.
To extract Microsoft OneDrive metadata, verify that you have the Microsoft URL for user authentication, user name, and password of the administrator to connect to the Microsoft OneDrive source system.
You need to provide the authentication details when you configure the Microsoft OneDrive catalog source in Metadata Command Center.
Verify permissions
To extract metadata and to configure other capabilities that a catalog source might include, you need account access and permissions on the source system. The permissions required might vary depending on the capability.
Permissions for metadata extraction
To extract Microsoft OneDrive metadata, you need account access and permissions to the Microsoft OneDrive source system.
Verify that the administrator performs the following tasks:
•Create a Microsoft user account to access the Microsoft OneDrive source system.
•Configure the read permission on the Microsoft OneDrive catalog source for the user account that you use to access the catalog source.
•Configure the access permission for the user account if your user account is different from the user account used to create the Microsoft OneDrive catalog source.
•Grant the following API permissions to the Microsoft Graph application:
- Files.Read
- Files.Read.All
- offline_access
- openid
- profile
- User.Read
Permissions to run data classification
You can perform data classification with the permissions required to perform metadata extraction.
Permissions to run glossary association
You can perform glossary association with the permissions required to perform metadata extraction.
Get Microsoft OneDrive source information
Before you configure the catalog source, ask the Microsoft OneDrive administrator for values of connection properties that you need to configure the catalog source.
Note: You don't need to create a connection object for Microsoft OneDrive. You provide this information when you configure the catalog source.
The following table describes the properties that you need:
Property
Description
Microsoft Cloud Authentication URL
Microsoft URL for user authentication.
User Name
User name of the administrator to connect to the Microsoft services.
Password
Password of the administrator account to connect to the Microsoft services.
Client ID
Client ID of the registered Microsoft Graph Application.
Client Secret
Client secret key of the registered Microsoft Graph Application.
Tenant ID
Tenant ID of the registered Microsoft Graph Application.
Microsoft Cloud Scope
Parameter that the endpoint uses to authenticate the user.
Example: https://graph.microsoft.com/.default
Redirect URL
URL of the cloud application to route requests to after successful authentication.
Source Directory
Path to the source directory that contains the files that you want to extract.