# Microsoft Graph

<figure><img src="https://2724359245-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2FEJuDg7OrGjHv3rCmvOdO%2Fuploads%2FQ48Umt9hQ2CtFPMfCmoh%2FScreenshot%202026-02-03%20092857.png?alt=media&#x26;token=34f96fd5-ef79-49f1-a561-380ca6ad6825" alt=""><figcaption></figcaption></figure>

## Step 1

Chose an appropriate name for the service

## Step 2

To get the Tenant ID go to [Identification Overview](https://entra.microsoft.com/#view/Microsoft_AAD_IAM/TenantOverview.ReactView)

<figure><img src="https://content.gitbook.com/content/EJuDg7OrGjHv3rCmvOdO/blobs/xb0sMM2fhbMbwIUudqD5/image.png" alt=""><figcaption></figcaption></figure>

## Step 3

You need to make New registration [Here](https://entra.microsoft.com/#view/Microsoft_AAD_RegisteredApps/ApplicationsListBlade)

<figure><img src="https://content.gitbook.com/content/EJuDg7OrGjHv3rCmvOdO/blobs/PZ0ZG8L44Wt8E87Ou6qn/image.png" alt=""><figcaption></figcaption></figure>

type a name for the app and register

<figure><img src="https://content.gitbook.com/content/EJuDg7OrGjHv3rCmvOdO/blobs/d0xTzay1W4xUMUBxG4GJ/image.png" alt=""><figcaption></figcaption></figure>

you can copy the Application (client) ID Here

<figure><img src="https://content.gitbook.com/content/EJuDg7OrGjHv3rCmvOdO/blobs/F6V3rhjL6ajZFIQx0q8l/image.png" alt=""><figcaption></figcaption></figure>

## Step 4

Go to the Authentication tab and change *Allow public client flows* to Yes then click save

<figure><img src="https://content.gitbook.com/content/EJuDg7OrGjHv3rCmvOdO/blobs/5Y2pHXJE4HcNYbmqw15z/image.png" alt=""><figcaption></figcaption></figure>

Then go to Certificates & secrets and create a new client secret and get the secret value once it is created

<figure><img src="https://2724359245-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2FEJuDg7OrGjHv3rCmvOdO%2Fuploads%2Fth2E0GssssKSU5DcWQ5V%2Fimage.png?alt=media&#x26;token=a8c3d4e2-8c33-474d-a4de-e57a72d9033d" alt=""><figcaption></figcaption></figure>

After that you need to add a redirect URI with the b2winsuite URL with /services/oauth2callback at the end.

<figure><img src="https://2724359245-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2FEJuDg7OrGjHv3rCmvOdO%2Fuploads%2F1EXJdGdRR9toddBq3yAk%2Fimage.png?alt=media&#x26;token=bfc3556b-4553-4b2c-bf3e-5e8aa81c77bf" alt=""><figcaption></figcaption></figure>

Next go to API permissions and add these permission and *Grant admin consent* (Only admin accounts can grant permissions)

<figure><img src="https://content.gitbook.com/content/EJuDg7OrGjHv3rCmvOdO/blobs/rcIUi71N158IqW2oC4yq/image.png" alt=""><figcaption></figcaption></figure>

## Step 5

Click on authorize and proceed with the authentication progress