Set up Microsoft Teams Graph spoke instructions are missing something

johnfeist · ‎09-23-2020

This is the first time that I'm working with Integration Hub or Oauth and I'm a bit confused.

I'm following the instructions in the documentation very carefully. I've entered the initial data in the Application Registry. I don't have a token revocation URL, but as that is not mandatory I don't know if I need one.

When entering the entity scopes, the column headings in the documentation differ for each object. When I go to enter the data, they remain as Name and OAuth Scope. As far as I can tell, I have the values entered correctly and the entity profile is created.

When I create the credential, I enter the values as described in the documentation and hit Save. From there, I get this error:

Since I followed all the instructions and confirmed that I've entered the correct values I go ahead and click the Get OAuth Token link. That produces the following error from Microsoft:

This raises the following questions:

What do I need to do to avoid getting the OAuth Access or Refresh token messages?
Since I'm using OOTB functionality, how do I add a name value pair to the request body and what do I use for scope? I assume that must come from the Microsoft side?

All suggestions are gratefully appreciated.

:{)

Hope that helps.

:{)

Helpful and Correct tags are appreciated and help others to find information faster

johnfeist · ‎09-30-2020

I opened a HI ticket and between the support engineer and one of my colleagues who supports Azure it turned out to be an issue with what values were included in some of the URLs. The strange message still appeared when I set up the credentials, but I got a token and that message was replaced with an acknowledgement that there was a token and it's expiry.

Hope that helps.

:{)

Helpful and Correct tags are appreciated and help others to find information faster

View solution in original post

Ashutosh Munot1 · ‎09-23-2020

https://hi.service-now.com/kb_view.do?sysparm_article=KB0791140

https://hi.service-now.com/kb_view.do?sysparm_article=KB0725643

Thanks
Ashutosh

johnfeist · ‎09-23-2020

Thank you Ashutosh.

In the second article I need to go to:

https://instancename.service-now.com/oauth_auth.do?response_type=code&redirect_uri=https://empimranitsm.service-now.com/login.do&client_id=40a3df6195c9ef0042a86892403d3f6c

On the final parameter, what is the client_id? I tried using my sys_id and the admin's sys_id and in both cases I got back

unauthorized_client: The client credentials provided (those of the service you are using) are either not valid or not trusted

:{?

Hope that helps.

:{)

Helpful and Correct tags are appreciated and help others to find information faster

Ashutosh Munot1 · ‎09-23-2020

HI,

Client ID is auto generated when you create oAuth profile

Thanks,
Ashutosh

johnfeist · ‎09-23-2020

Forgive me, someone must have slipped me a stupid pill this morning.

The only client ID I can find is the one from Microsoft that I used to register the application. When you say the client_id is auto generated when I crate the OAuth profile, is that the profile's sys_id? I don't find a client_id in oauth_entity_profile.

:{?

Hope that helps.

:{)

Helpful and Correct tags are appreciated and help others to find information faster

Ashutosh Munot1 · ‎09-24-2020

HI,

This depends on how you register the oAuth. Can you show the oAuth profile and what you selected in interceptor while creating it.

Thanks,
Ashutosh