For seamless access to OneDrive for Business, VMware Dynamic Environment Manager requires certain properties to be configured on the Microsoft Azure Enterprise Application.
To create your own Enterprise application, ensure that the following properties are configured.
- App must have
Files.ReadWrite
andUser.Read
Microsoft Graph permission. Ensure the permission type is set to Delegated, so the permission is limited to the scope of logged in user. - Grant admin consent for the preceding permission so that the authentication is silent.
- Configure the app as a Public Client.
- Add redirect URI
urn:ietf:wg:oauth:2.0:oob
. -
Specify the ID of your Azure AD application in the agent configuration. See Dynamic Environment Manager FlexEngine Group Policy Object Advanced Configuration Settings and Dynamic Environment Manager FlexEngine Advanced Settings in NoAD Mode.