Set up the Microsoft Teams Communications spoke

  • Release version: Washingtondc
  • Updated February 1, 2024
  • 3 minutes to read

    • Integrate the ServiceNow instance and Microsoft Teams Communications account by creating a custom OAuth application in Microsoft Teams Communications to authenticate ServiceNow requests.

    Before you begin

    • Request an Integration Hub subscription.
    • Activate Microsoft Teams Communications spoke.
    • Role required: admin

    Register a custom application using the Microsoft Azure portal

    Provide authorization to the ServiceNow instance by registering a custom application with Azure AD.

    Before you begin

    Role required: Azure Active Directory admin.

    Procedure

    1. Log in to the Microsoft Azure portal.
    2. Under Azure services, click App registrations.
      Register an app.
    3. From App Registrations, click New registration.
      New app registration.
    4. Provide a name and click Register .
      Registering an app.
      Application is registered and essential application details are displayed.
    5. Copy and record the value of Application (client) ID and Directory (tenant) ID for later use.
    6. Click Certificates & secrets, and click New client secret.
    7. On the form, provide Description and click Add.
      Add a client secret.
    8. Copy Value of client secret for later use.
      Copy the client secret.
    9. Click API permissions.
    10. Under Configured permissions, click Add a permission.
    11. Under Request API permissions, select Microsoft Graph
      Add permissions.
    12. Click Application permissions.
    13. Ensure that these permissions are provided to your custom app:
      • User.Read.All
      • OnlineMeetings.ReadWrite.All
      • Calls.InitiateGroupCall.All
      • Calls.JoinGroupCall.All
      • Calls.JoinGroupCallAsGuest.All
      For more information about the API permissions, see Add permissions to access your web API in Microsoft Learn.
    14. Click Add permissions.
      Add application permissions.
    15. Click Grant admin consent for MSFT.
      Grant admin consent.
      System prompts you to confirm the consent.
    16. Click Yes.
      A confirmation message is displayed that admin consent is granted for the requested permissions.
      Confirmation message.
    17. Create a bot and configure it as per your requirement.
      For information about creating and setting up the bot, see Create a bot in Microsoft Learn. Update bot endpoint address to point to your bot.

    Register Microsoft Teams Communications as an OAuth provider

    Use the information generated during the application configuration in Microsoft Azure portal to register Microsoft Teams Communications as the OAuth provider so that the ServiceNow instance can request OAuth 2.0 tokens.

    Before you begin

    Role required: admin

    Procedure

    1. Navigate to All > System OAuth > Application Registry.
    2. Click New.
      The system displays this message: What kind of OAuth application?.
    3. Select Connect to a third party OAuth Provider.
    4. On the form, fill these values.
      Table 1. Application Registries form
      Field Description
      Client ID Application ID created during application registration.
      Client Secret Client secret created during application registration.
      Active Option to actively use the application registry.
      Authorization URL OAuth authorization code endpoint. Enter https://login.microsoftonline.com/<Directory-ID>/oauth2/v2.0/authorize.
      Token URL OAuth server token endpoint. Enter https://login.microsoftonline.com/<Directory-ID>/oauth2/v2.0/token.
      Token Revocation URL OAuth server token revocation endpoint.
      Redirect URL OAuth callback endpoint. Enter https://<instance-name>.service-now.com/oauth_redirect.do.
      Default Grant type Grant type used to establish the token. Select Client Credentials.
    5. Right-click the form header, and click Save.
    6. In the OAuth Entity Profiles tab, insert a row and fill these values:
      Field Description
      Name Name to identify the entity profile record. For example, MS Teams Comm OAuth Prof.
      Is default Specifies if the record is the default entity profile.
      Grant type Grant type used to establish the token. Select Client Credentials.
    7. In the OAuth Entity Scopes tab, insert a row and fill these values:
      Field Description
      Name Name to identify the entity scope record. For example, MS Teams Comm OAuth Scope.
      OAuth scope OAuth entity scope. Enter .default.
    8. Right-click the form header, and click Save.
    9. In the OAuth Entity Profiles tab, open the entity profile record you had created.
    10. In the OAuth Entity Scopes tab, insert a record.
    11. Search and select the OAuth entity scope you had created.
    12. Click Update.

    Create a credential record for the Microsoft Teams Communications

    Authorize the Microsoft Teams Communications spoke actions by creating credential records for the application registered in the Microsoft Azure portal. The Microsoft Teams Communications connection and credential alias uses these credentials to authorize actions.

    Before you begin

    Role required: admin

    Procedure

    1. Navigate to All > Connections & Credentials > Connections & Credentials Aliases.
    2. Open the alias record, MSTeamsCommunicationsSpoke.
    3. From the Credentials tab, click New.

      The system displays this message: What type of Credentials would you like to create?

    4. Select OAuth 2.0 Credentials.
    5. On the form, fill in the fields.
      Table 2. OAuth 2.0 Credentials form
      Field Description
      Name Name to uniquely identify the record. For example, MS Teams Comm Cred.
      Active Option to actively use the credential record.
      OAuth Entity Profile OAuth profile created during the registration of Microsoft Teams Communications as an OAuth provider. For example, MS Teams Comm OAuth Prof.
    6. Right-click the form header and click Submit.
    7. To generate the OAuth token, click the Get OAuth Token related link.