====== SharePoint connector ======

This connector is developed for managing SharePoint permission management via [[https://pnp.github.io/powershell/articles/installation.html|PnP.PowerShell]] module.

Connector is based on [[.::adm:systems:winrm_ad_connector|]].

===== Requirements =====

Has same [[https://wiki.czechidm.com/devel/documentation/adm/systems/winrm_ad_connector#requirements|requirements]] as [[.::adm:systems:winrm_ad_connector|]].

Plus requires:

  * PowerShell 7
  * [[https://pnp.github.io/powershell/articles/installation.html|PnP.PowerShell]] module

===== Supported operations =====

^Object^Operations|
|<nowiki>__ACCOUNT__</nowiki>|UPDATE, SEARCH|
|<nowiki>__SITE__</nowiki>|SEARCH, SYNC|


===== Schema =====

Connector generates foloing schema:

  * <nowiki>__ACCOUNT__</nowiki>
      * <nowiki>__UID__</nowiki>
      * memberOf
  * SITE
      * <nowiki>__UID__</nowiki>
      * description

===== Permissions =====

Microsoft Graph

  * User.Read.All

Microsoft Sharepoint

  * Sites.Read.All
  * Sites.FullControl.All


===== Configuration =====

==== Script Configuration ====

=== Update script ===

Path to Python update script for user

=== Powershell update script ===

Path to powershell update script for user, which will be loaded into python and executed on Windows

=== Get Latest SyncToken script ===

Path to Python script to get latest SyncToken

=== Powershell Get Latest SyncToken script ===

Path to powershell script to get latest SyncToken, which will be loaded into python and executed on Windows

=== Search user script ===

Path to Python search user script

=== Search site script ===

Path to Python search site script

=== Powershell search user script ===

Path to powershell search script for user, which will be loaded into python and executed on Windows

=== Powershell search site script ===

Path to powershell search script for site, which will be loaded into python and executed on Windows

=== Test script ===

Path to Python script for test

==== WinRM Configuration ====

=== Endpoint ===

URLto the endpoint, where is WinRM accessible. Usually [[https://host:5986/wsman|https://HOST:5986/wsman]] for HTTPS and [[http://host:5985/wsman|http://HOST:5985/wsman]] for HTTP

=== Authentication schema ===

One from supported values - basic, ntlm, kerberos, credssp

=== User ===

Username for user which will be used for authentication to WinRM

=== Password ===

Password for this user

=== CA trust path ===

Path to certificate which will be used in HTTPS communication. E.g /path/to/file/crt.pem

=== Ignore CA validation ===

If you want to connect to WinRM without CA validation - Don't use in production, only for testing!

==== SharePoint Configuration ====

=== SharePoint Url ===

SharePoint Url

=== SharePoint ClientId ===

Client Id

=== SharePoint certificate path ===

Path to certificate on WinRm server.

=== SharePoint certificate password ===

Password for certificate

=== SharePoint TenantId ===

Tenant Id

=== Include Teams sites ===

If should connector include "Teams sites" in search and sync.