Setup Audit Log Connector API Permissions

Like (0) Share

Report

Posted on 2 Nov 2021 22:18:01 by Joel6612

I understand the call is made by “power automate cloud flow” under the hood. That probably is an SPN (Client ID / Client secret) making the API call and requires “Application” type permission. A couple of questions

• Why do we need “Activity Feed read” to be a “delegated” type and “application” type both. Given the use case shouldn’t the “application” type suffice?

• Do you have a way to configure client certificate instead of client secret?

I have the same question (0)

All responses (1)

Answers (0)

ChrisPiasecki 6,414 Most Valuable Professional on 15 Nov 2021 at 03:01:22

Like (0)

Report

Re: Setup Audit Log Connector API Permissions

Hi @Joel6612,

Are you referring to the Office 365 Management API custom connector as part of the CoE Starter Kit?

While you can technically use client certificates to request an access token from the Office 365 Management APIs, currently you cannot specify a client certificate in a custom connector definition, only client/secret parameters are available for OAuth2. More info here.

---
Please click Accept as Solution if my post answered your question. This will help others find solutions to similar questions. If you like my post and/or find it helpful, please consider giving it a Thumbs Up.

Was this reply helpful? Yes No