SharePoint Online (ADFS SSO) [Claims] Source Quick Setup
-
Validate that your environment meets the requirements:
-
OR
(For Microsoft OneDrive for Business) CES 7.0.8047+ (December 2015)
Note: You can check your CES version from the Administration Tool. [more]
-
Your Coveo license includes the Microsoft SharePoint or Microsoft OneDrive for Business connector. [more]
-
Your ADFS setup meets Coveo requirements. [more]
-
CES 7.0.8047+ (December 2015) DNS records for Office 365 at your DNS hosting provider
-
-
Create a user identity with a dedicated account that has access to all the SharePoint content that you want to index.
Key parameter Value Name You must name your user identity. User A single sign-on Office 365 account in the username@domain.com form. Password The corresponding password. -
Ensure that the account of your user identity has the appropriate permissions:
-
For content and permission indexing, incremental refresh, and site collection discovery, the account must have Administrator permission for all SharePoint Online site collections to index, but also the root site collection. [more]
-
For personal site, user profile, and social tags indexing, the account must be owner of all personal sites collections. [more]
-
-
Create a Claims for SharePoint Online security provider. [more]
Key parameter Value Name You must name your security provider. Security Provider Type Claims for SharePoint Online User Identity When a claims-aware Coveo Search is used, select a user identity of any Windows account that can be used to authenticate to ADFS. Otherwise, select the user identity you just created. [more] SharePoint Web Application Url In the form https://domain.sharepoint.com Office 365 Native Users Domain(s) In the form domain.onmicrosoft.com[more] Allow Complex Identities Selected -
Install the Windows Azure AD module on the Coveo Master server needed by the Office 365 security provider. [more]
-
Create an Office 365 security provider. [more]
Key parameter Value Name You must name your security provider. Security Provider Type Office 365 User Identity The single sign-on Office 365 user identity you created. Users Security Provider The Claims for SharePoint Online security provider you just created. Windows Azure Active Directory Module for Windows PowerShell The installation path of the Microsoft Online Services Module for Windows PowerShell. [more] -
Create a SharePoint security provider. [more]
Key parameter Value Name You must name your security provider. Security Provider Type SharePoint User Identity The single sign-on Office 365 user identity you created. Active Directory Security Provider (none) Security Provider for SharePoint Users The Claims for SharePoint Online security provider you just created. Security Provider for Domain Groups The Office 365 security provider you just created. SharePoint Server Url URL of the SharePoint Online site in the form https://domain.sharepoint.com/[path], where [path] is needed only when you want index a specific site collection, list, etc. AuthenticationType SpOnlineFederated AdfsServerUrl The URL of the ADFS server for which a trust is established with SharePoint. SharePointTrustIdentifier The Relying Party Trust identifier for the SharePoint web application, such as urn:federation:MicrosoftOnline. [more] Notes: You can configure the security provider to operate when multiple ADFS servers are used to authenticate users in SharePoint. [more]
-
Create a SharePoint or OneDrive for Business source.
Key parameter SharePoint OneDrive for Business Name You must name your source. Source Type SharePoint (x64) OneDrive for Business Addresses The SharePoint Online server URL in the form https://domain.SharePoint.com. [more] The URL of the SharePoint Online site collection regrouping all the personal sites (in which are located the OneDrives for Business) that you want to index in the form https://domain-my.sharepoint.com. [more]
Authentication Type SpOnlineFederated AdfsServerUrl
(Hidden parameter)The URL of the ADFS server for which a trust is established with SharePoint. SharePointTrustIdentifier
(Hidden parameter)The Relying Party Trust identifier for the SharePoint ADFS server. [more] Authentication The single sign-on Office 365 user identity you created. Security Provider The SharePoint security provider you just created. Notes: You can configure the source to operate when multiple ADFS servers are used to authenticate users in SharePoint.
-
Rebuild the source and validate that documents are indexed.