SAP Sales Cloud Relationship Intelligence Setup – Azure Side Configuration
This series of blog posts provides a good overview of how to configure Relationship Intelligence which is now available with SAP Sales Cloud’s Intelligent Sales Add-on.
Currently, we only support integration with Office 365 hence this is a prerequisite for this solution.
Please make sure you refer to all these blogs for end-to-end setup.
- Setting up your Application and Distribution List/Group in the Azure portal (This Blog)
- Generating Password Protected Self-Signed Certificate using open SSL
- Setting up Relationship Intelligence in SAP Sales Cloud
Setting up your Application in Azure is one of the first steps that you would need to perform in Relationship Intelligence. Ensure you have an Azure account with an active subscription.
There are 3 important steps in this and I will try to cover the steps you must follow with screenshots.
- Application Registration
- Grant API Permission for Application
- Create Distribution List/ Group
- Application Registration: Log in to your Azure portal using your admin credentials and go to Azure Active Directory
Once you are in Azure Active Directory under Manage, Select App registrations and then click on New Registration
2. Grant API Permission for Application
Within the application under Manage select API Permission and click on Add permission. Once you click on Add permission, you will see a pop-up – Request API permission.
Here select Microsoft Graph API -> Application Permission and then search and add the below permissions
Once you add these APIs make sure you Grant Admin Consent
3. Create Distribution List/ Group :
You must ensure you have a valid group created. Relationship Intelligence monitors only those email addresses maintained in the group.
To create a group go to the Azure Active Directory and under Manage go to Groups and click on New Group
While creating the group ensure that you select group type Microsoft 365 and membership type as Assigned. Ensure that the domain is the same as the one you that you have used while registering the application in the Azure portal
Once created make sure you have added members to the group(of course also belonging to the same domain). Add only those members whose mailbox you wish to monitor.
With the above 3 steps, the Azure Side setup would be completed. There is one more step to be done in Azure which is to upload the certificate for authentication, which requires you to generate a password-protected self-signed certificate. Please do share your feedback and thoughts in the comments.
You can refer to my Next Blog post Generating Password Protected Self-Signed Certificate using open SSL for more details on certificate generation and upload.