3.2.3 Add An OneDrive Storage

In order to integrate Microsoft OneDrive service with MetaDefender for Secure Storage you will be required to create an application registration, assign the necessary permissions and then generate a secret key. Please follow these steps:

  1. From the left side menu, navigate to Storage units and from the Cloud Storage tab, choose Add OneDrive Storage
    images/download/attachments/4874843/OneDrive.PNG

  2. Give your storage a name so you can easily identify it later

  3. Enter your Tenant ID. Scroll to the end of this page for more details.

  4. Enter your Client ID. Scroll to the end of this page for more details.

  5. Enter your Client Secret. Scroll to the end of this page for more details.

  6. Enter the name of a group if you only wish to process files, folders and sites from a particular group. Leave this field empty if you wish to process the entire OneDrive including all groups and sites.

  7. Select the MetaDefender Core server that you wish to use.

  8. Select Add in order to finish the process.

How to create a OneDrive application

In order to process your OneDrive files and folders with MetaDefender for Secure Storage you will be required to add a new app registration in your Active Directory Azure Portal.

  1. Log in to Azure Portal and from the left navigation menu choose Azure Active Directory
    images/download/attachments/4874843/image-20200328-183645.png

  2. Make a copy of the Tenant ID from the overview page
    images/download/attachments/4874843/image-20200328-184244.png

  3. From the left side menu, choose App registrations

  4. Click New registration

  5. Give your app a name so you can easily identify it
    images/download/attachments/4874843/image-20200328-184907.png

  6. There is no need to modify the other properties. When ready, please click Register

  7. From the Overview page of your newly created application, make a copy of Application (client) ID
    images/download/attachments/4874843/image-20200328-185443.png

  8. You now need to specify which permissions should the application have. To do this, please navigate to API permissions from the left-side menu

  9. Click Add a permission
    images/download/attachments/4874843/image-20200328-191201.png

  10. Select Microsoft Graph from the right-side menu images/download/attachments/4874843/image-20210315-093519.png

  11. Select Application permissions images/download/attachments/4874843/image-20210315-093412.png

  12. In order for MetaDefender for Secure Storage to correctly work please add the following permissions:

    1. Files.ReadWrite.All

    2. Group.Read.All

    3. Sites.Read.All

    4. User.Read.All

  13. When ready, click Add permissions

  14. We need to grant admin consent for the added permissions
    images/download/attachments/4874843/image-20200328-192030.png

  15. Now that the required permissions are in place, you are ready for the final step. Please navigate to Certificates & secrets from the left-side menu

  16. Click New client secret and make sure that it never expires
    images/download/attachments/4874843/image-20200328-192500.png

  17. Click Add and then your will need to make a copy of the generated secret key because it will not be available later

  18. Now that you have the Tenant ID, the Client ID and the Client Secret Key you can go back in MetaDefender for Secure Storage and finish the OneDrive integration. Congratulations!
    images/download/attachments/4874843/image-20200328-192832.png