Introduction

With version 4.3 of the TDM Designer a new authentication method will be used for creating Office365 data sources. This method is based on the Oauth2.0 protocol. With the new authentication method a few things have changed regarding the login procedure.

With this new workflow it is required to configure a Client ID, Client Secret and Tenant ID. These values become available after creating an Azure application within your Office365 environment. This guide explains how the Azure application can be created.

Requirements

If you want to create your own Azure application for Office365 you need to meet the following requirements:

• Have access to the Azure platform and have the permissions to create applications.
• Have permissions within Azure platform to grant admin consent on applications.
• Have administrator access to your Office365 environment
• Have the information available regarding the service account which need to be configured
• Have access to the client ID, Tenant ID and client secret of the Azure application created for TDM
  
  

How to create an Azure application for Office365

1. Sign in with your Office365 account into: https://portal.azure.com/
   
   
2. Select Azure Active Directory.
   
   
   Select App registrations.
   
   
   Select New registration
   
   Fill in a name for your application, for example: Office365 for TDM
   
   
3. Set the “Supported account types” to: “Accounts in this organizational directory only”.
   
   
   
4. Please configure the following redirect URL: https://socialmedia.tdmsignage.com/connect/office365.aspx
   (Please make sure a WEB platform is selected and then add the URL. This can be edited afterwards by selecting the tab “Authentication”, then please select “Add a platform” and select the WEB platform and add the URL)
   
   
5. Once the application has been created please visit the tab “API permissions” and configure the following permissions. Also make sure to grant Admin consent for your Tenant.
   
   
   
6. Once you have configured the API permissions a client secret can be created in the tab “Certificates & Secrets”
   
   
   Please select “New client secret” and add a description, for example: Office365 for TDM
   
   
   
7. Once the client secret has been created please copy the value as this will be encrypted once you leave the Azure Application page, the Tenant ID and Client ID can be found in the tab “Overview”.
   
   You finished the steps for setting up the Azure application. The credentials you have created need to be configured in the TDM designer.
   
   This can be configured in: Config Panel > Authentication Options. Please also take a look into the manual “TDM 4.3 - How to add Office365 based on Oauth2.0” for further information regarding the usage of Office365 within the TDM designer.  

How To configure delegated users   

1. Login with an administrator account into: https://login.microsoftonline.com
   
   
2. Please open the menu from the left corner and then select "Admin"
   
   
   
3. Please select "Show all" on the menu on the left side
   
   
   
4. Then select "Resources > Rooms & Equipment"
   
   
   
5. Select the room, for example: room01@tdmsignage.com
   
   
   
6. Please select “Edit” beneath “Delegates”:
   
   
   
7. Please add the service account you want to use for your data sources and add it as a delegated user and select “Save Changes”.
   
   Now you have successfully configured a delegated user for your room resource, please note that it might take up to 24 hours before the changes are fully active and processed by Office365.

How To add Office365 based on OAuth2.0 using a custom Azure application

1. Login to the designer with an administrator account: https://designer.tdmsignage.com/
   
   
2. Open the “Config panel”. This can be selected in the menu on the left side of the designer.
   
   
   
3. Open the tab called “Authentication Options” to open the window where the Client ID, Client Secret and Tenant ID can be configured.
   
   
   
4. Enter the Client ID, Client Secret and Tenant ID which became available after creating the Azure application. Once all information has been filled in please select “Save Changes”.
   
   
   
5. Now we can continue and start creating the data source. Open the tab called “External Data” to open the overview of your data sources.
   
   
   
6. Select the “+” button on the right side to create a new data source.
   
   
   
7. In the pop-up window you will see all the data sources that can be configured in TDM. Please use the name of the calendar/room as the name of the data source. This way it can be easily traced in the future. Afterwards please select “Office365 Calendar” and select “Next”.  
   
   
   
8. You will be re-directed to the Microsoft login page. Here you can login using your service account which has permissions to the room/calendar. Once you have successfully logged in the window will close and you will return to the designer page.
   
   
9. Select the type of resource you want to add:
   
   Rooms: In case you want to add a resource created within the admin part of Office365 please use this type.
   
   Calendars: In case you want to add a personal calendar from a specific user please select this type.
   
   
   
10. a: In case rooms is selected please fill in the email address of the room. For example: meetingroom1@tdmsignage.com. The email address of the room can be retrieved from the admin panel of Office365. Once the email address has been filled in please select “Save” to save the data source.
    
    
    b: In case calendars is selected please choose the calendar you want to use from the dropdown, for example: Calendar. Once the calendar has been selected please select “Save” to save the data source.
    
    
    Once you have finished these steps you have successfully created your Office365 data source. You can now use your data source within your template design or use it for your meeting room solution.