OneDrive Datasource and Connector Configuration

OneDrive is a file hosting service that is part of the Microsoft Office Online services. The Fusion OneDrive connector crawls a OneDrive for Business instance and retrieves data from it for indexing within Fusion.

To set up the Fusion connector, first authenticate it with a new or existing Microsoft application. Then proceed to configuring the crawl. Details follow.

Authenticate the Fusion connector with OneDrive

To authenticate the Fusion OneDrive connector with a OneDrive application, first configure OneDrive with the correct permissions, then authenticate the connector.

Configure OneDrive for use with the Fusion connector

Create and register a Microsoft OneDrive App for use with the Fusion connector.

  1. Navigate to the O365 login page.

  2. Log in using an O365 admin account, or create a new one.

  3. Use an existing application or create a new one. To create a new application:

    1. From the My Applications page, click Add an app.

    2. Give your app a name and click Create.

  4. Take note of the Application ID. You will need this later.

  5. Click Generate new password and take note of the password.

  6. Under Platforms, click Add platform and then Web.

  7. Fill in a redirect URL to your web site, ending in port 8090. For example: http://localhost:8090

  8. Add the following permissions to the application:

    • Delegated permissions: Files.Read.All, Sites.Read.All, User.Read, Directory.Read.All (Admin Only), People.Read.All (Admin Only), User.Read.All (Admin Only)

    • Application permissions: Directory.Read.All (Admin Only), Files.Read.All (Admin Only), People.Read.All (Admin Only), Sites.Read.All (Admin Only), User.Read.All (Admin Only)

  9. Click Save. The application is now ready to be authorized by an O365 account administrator for use with the connector.

Authenticate the connector

To authenticate the Fusion connector:

  1. Open a web browser and enter the following URL:

    https://login.microsoftonline.com/<account_name>.onmicrosoft.com/oauth2/authorize?client_id=<application_id>&response_type=code&redirect_uri=http://<yoursite>&response_mode=query&resource=https://graph.microsoft.com&state=12345
    • Replace <account_name> with the prefix name of your account.

    • Replace <application_id> in the client_id parameter with your Application ID from above.

    • Add your site URL for the uri parameter.

  2. Optional: Enter ADFS issuer URI.

  3. Access the URL. A list of permissions displays.

    accept screen for One Drive connector permissions

  4. Click Accept. You can now use this application to crawl your OneDrive for Business accounts.

Crawl a subset of the OneDrive space

You can optionally configure the OneDrive connector to crawl only the drives of certain users that you specify.

To limit the crawl to user-specific drives:

  1. Install the OneDrive connector.

  2. In the Fusion UI, navigate to the OneDrive connector configuration at Indexing > Datasources > Add > OneDrive.

  3. In the User principal name (UPN) filter field, specify a list of users (user principal names, or UPNs) to retrieve documents from.

    • A user’s UPN is the one they use for logging into OneDrive.

    • The User principal name (UPN) filter field is an array, so you can set multiple UPNs.

Troubleshooting tips:

  • All UPNs are validated, by retrieving the user drives. If the request fails, it is logged in $fusion_home/var/log/connectors/connectors-rpc/connectors-rpc.log.

  • If validation fails for all UPNs set, then the crawl job doesn’t start.

  • If at least one UPN is valid, then the validation succeeds and the job starts. While the job is running, requests to invalid UPNs fail and are logged.

  • If more than 10 UPNs are set, then the validation is skipped for performance reasons.

Configuration