Configure the component

This topic describes the third configuration task in the process of setting up an AutoStore workflow using Modern Authentication / OAuth2.

Perform this task in AutoStore Process Designer after you have successfully registered a Microsoft 365 application for Token Vault through the Microsoft Identity Platform (Azure Active Directory) admin center; and registered a Microsoft 365 authorization provider in Token Vault.

  1. Launch AutoStore Process Designer.
  2. Create a new workflow or modify an existing one.
  3. On the Office 365 Mail Send configuration page select Delegation Access mode.
  4. Enter your Provider ID which was generated by Token Vault during the Authorization Provider registration task.
  5. Enter the Token Vault URL in the following format: https://<FQDN>:<port>.
  6. Enter a domain user account in UPN format, into the Local User Account field, to be used by Token Vault to fetch a token for the component to use.

    In most cases this field should be filled with an RRT, which gets replaced at workflow execution time with a domain user account in UPN format.

The rest of the component configuration options are usually independent from the authentication method and can be configured according to the needs.

However, if a configuration option requires interaction with the cloud provider, it is necessary to authorize access to the cloud resource before the administrator can successfully complete the configuration. An example of such a case is when the administrator wants to select a root folder and configure a component to let users store documents in sub-folders of this pre-selected root.

In these cases, the administrator must authorize in the context of their own user account to perform the component configuration. However, this does not automatically grant access to the resources of other users. All users need to do the authorization themselves for the component to work and connect properly to the cloud resource in the context of their own accounts.