The following steps are required to migrate from/to Microsoft 365 Groups.
- Login to the Microsoft Azure portal for your chosen domain.
- Click 'Azure Active Directory' and then 'App registrations'
- Click 'New registration' and
- Enter a name for your application (This can be changed at any time).
- Supported Account Types should be left as the default 'Accounts in this organizational directory only (NAME OF COMPANY)'
- Redirect URI is not required.
- Click 'Register'
- On successfully registering your application you will be redirected to the below screen.(For the purpose of this documentation, the name of application is 'CloudM Migrate Source')
-
NOTE : Open Notepad and Copy 'Application (client) ID'. This is the 'Client Id' required in the CloudM Migrate configuration
-
NOTE : Open Notepad and Copy 'Application (client) ID'. This is the 'Client Id' required in the CloudM Migrate configuration
- Click 'Certificates & secrets'
- 'New client secret'
- Select 'Never'
- Click 'Add'
- Client Secret will be generated and the client secrets table populated like below.
-
NOTE : Copy the value generated and paste the value into notepad. This is the 'Client Secret' required in the CloudM Migrate configuration.
-
NOTE : Copy the value generated and paste the value into notepad. This is the 'Client Secret' required in the CloudM Migrate configuration.
- Click 'API Permissions'
- Remove the default 'User.Read' by selecting the row and clicking 'Remove permission'
- Remove the default 'User.Read' by selecting the row and clicking 'Remove permission'
- Click 'Add a permission', under 'Microsoft APIs' select 'Microsoft Graph'
- Click 'Application Permission'
- Under 'Select Permissions' type the name of the permission you would like to add. Once all added, click 'Grant admin consent for '(Name of company)'
-
Source Office 365 Groups add :
- Directory.Read.All
- Directory.ReadWrite.All
- Group.Read.All
- Sites.ReadWrite.All
-
Source Office 365 Groups add :
-
Destination Office 365 Groups add :
- AuditLog.Read.All
- Directory.Read.All
- Group.Read.All
- Group.ReadWrite.All
- Sites.ReadWrite.All
If you have not already done so, please ensure that all permissions have been granted by clicking the 'Grant admin consent for (Company name)' button.