Adding Microsoft 365 Accounts

Before you start backing up items from your Microsoft 365 account, you need to add the Microsoft 365 account to the NAKIVO Backup & Replication inventory.

Adding Microsoft 365 Account to Inventory

To add a Microsoft 365 account to the inventory, do the following:

1. Check if you meet Microsoft 365 requirements.
2. Click Settings in the left pane of the product.
3. Go to the Inventory tab and click Add New.
4. In the dialog that opens, click Microsoft 365 account.
   
   
   
   
5. The Add New Microsoft 365 Account page opens. Provide the following information: 
   • Display name: Enter the preferred name for the account.
   • Services: Select one or several Microsoft 365 services that you want to back up:
     • Exchange Online
     • OneDrive for Business
     • SharePoint Online
   • Tenant ID: Enter your Azure Tenant ID created when registering your Microsoft 365 account in the Azure Portal.
   • Azure Client ID: Enter your Azure Client ID created when registering your Microsoft 365 account in the Azure Portal.
   • Azure Client Secret: Enter your Azure Client Secret obtained from the Azure Portal. For more information on obtaining the Azure credentials, refer to the Obtaining Microsoft 365 Credentials section.
   • Username:  Provide the administrator username required for SharePoint Online support. If left empty, SharePoint Online data will not be discovered.
   • Password: Provide the password required for SharePoint Online support. If left empty, SharePoint Online data will not be discovered.
     
     
     
     
6. Click Add. The Microsoft 365 account has been added to the inventory.
   

Obtaining Microsoft 365 Credentials

To obtain the credentials required to add a Microsoft 365 account to the NAKIVO Backup & Replication inventory, follow the steps below:

1. Open the Azure Portal by going to portal.azure.com
2. Sign in to Microsoft Azure with your Microsoft 365 account credentials.
3. Select Azure Active Directory from the Dashboard or from the Portal Menu.
   
   
   
   
4. In the left menu, click App registrations.
   
   
   
   
5. Click New registration on the App registrations page.
   
   
   
   
6. On the Register an application page, enter a name for the application and click Register. 
   
   
   
   The application has been successfully registered and Tenant ID and Azure Client ID are displayed (Directory (tenant) ID and Application (client) ID respectively).
   
   
7.  Click View API Permissions to add the necessary permissions. 
   
   
   
   
8.  Click Microsoft Graph.
9.  Click on the Application permissions tab.

10.  Provide the necessary API permissions. Refer to Required API Permissions from Microsoft 365 for details.

    Note

    • To skip discovering Exchange Online mailboxes, OneDrives, or SharePoint Online sites in the inventory, disable the API permissions for the corresponding service.
    • If the necessary API permissions for Microsoft Exchange Online/OneDrive for Business/SharePoint Online are not provided, the corresponding service will not be discovered by NAKIVO Backup & Replication.
    • If the necessary API permissions for Microsoft Exchange Online contact and calendar items are not provided, the items will not be supported for backup and recovery operations.
    • To recover messages and contacts containing a lot of content, you also need to enable full_access_as_app for Office 365 Exchange Online in APIs my organization uses.
11.  Click Update Permissions.
    
    
    
    
12. Click Certificates & secrets>New client secret to create a new client secret for your app.
    
    
    
    
13. Enter a description for the client secret, select the expiration period, and click Add.

The new Client secret is generated.



Make sure you jot down the client secret id somewhere safe; If you lose it, you will need to generate a new one.