Configuring Microsoft Teams
This section explains how to configure Microsoft Teams in Brightspot.
To configure Microsoft Teams on Microsoft:
- Ensure that an application has been registered with the Microsoft identity platform. Copy and save the application's Client ID, Tenant ID, and Client Secret values.
- Create an Azure Bot resource via the Azure dashboard or Azure CLI by selecting Use existing app registration and entering your existing Client ID and Client Secret from the previous step.
- Navigate to the Configuration page and provide the following messaging endpoint:
https://[YOUR_BRIGHTSPOT_CMS_DOMAIN]/microsoft/teams/api/messages.
- Connect a bot to Microsoft Teams. Once connected, copy and save the address of the Open in Teams link under the Action column.
- Log in to Brightspot.
- Click > Admin > Sites & Settings > Sites > Global.
- Click , located to the left of , and type Microsoft Teams.
- Under Account for App Installation, click the button to be redirected to Microsoft to authenticate. You redirect back to Brightspot after authentication, and you are prompted to save your settings to activate the admin account.NoteOnly Microsoft admins are able to authenticate this Microsoft account. If a user other than an admin attempts to authenticate, the attempt fails.
Once a Microsoft admin authenticates with Microsoft, Brightspot associates the admin's account with the Brightspot user account. The Account for App Installation field in Brightspot then converts to a read-only field. - Under App for Team Bot, click to search for an existing Microsoft app. If you have not yet created a Microsoft app in Brightspot, see Adding a Microsoft App.
- Under Teams Bot URL, select a bot by pasting the address of the Open in Teams link that you copied in Step 4 of this topic.
- Toggle on Allow App Selection for Notification to allow editors to choose an app for notification in their profile. Enable this toggle in multi-tenant environments.
- Click Save.
Configuring how end-users consent to applications in Azure dashboard:
End users may not be able to grant permissions to the Brightspot app depending on the user consent settings in Azure. If users are required to submit an approval request to an admin when they sign in with Microsoft via Brightspot, you can configure how end-users consent to applications using Azure Active Directory. If you decide to allow users to consent for permission classified as low impact, add the following permissions: Channel.ReadBasic.All
, Team.ReadBasic.All
, offline_access
, openid
, profile
, User.Read
.
Configuring Brightspot Teams App in Microsoft and Azure dashboards:
- Modify
manifest.json
by replacing[DOMAIN]
,[BOT_APP_ID]
,[PATH_TO_PRIVACY_POLICY_URL]
,[PATH_TO_TOU_URL]
with proper values. For more information, see themanifest.json
file. For more information, you can check the manifest.json references. - Zip the files in the app directory and upload the .zip to the organization's app store. You can also manage your apps in the Microsoft Teams admin center.