アプリケーション ID とシークレット

概要

実行: バックグラウンドサービスとして。
Scenario: attended, unattended, and unattended with MFA enabled.
アプリケーションのアクセス許可。
無人オートメーションの実行にお勧めです。または、サインインしているユーザーを使用せず、アプリケーションとして (バックグラウンドサービス/デーモン) Microsoft Graph API にアクセスする場合にお勧めです。

詳細

When registering your application, you must select an application type. For application ID and secret authentication type, use a web application (which uses OAuth 2.0 client credentials flow).
You must configure the appropriate API permissions for the Azure application in order for Microsoft 365 activities to work properly. For more information, see Working with activity scopes.
A single organization can have multiple application (client) IDs. Each application (client) ID contains its own permissions and authentication requirements. For example, you and your colleague can both register a Microsoft 365 application in your company's Azure Active Directory with different permissions. Your app can be configured to authorize permissions to interact with files only, while your colleague's app is configured to authorize permissions to interact with files, mail, and calendar.
メールアクティビティの場合は、必ず [アカウント] パラメーターの値 (つまり、テナント内のすべてのメールボックスのどれを使用するか) を指定する必要があります。
Use the Sites.Selected application permission to allow the application to access specific SharePoint site collections rather than all. When you add the Sites.Selected permission, you also need to specify the sites the application can access. You can do this through Postman. Note that you can use the Sites.Selected instead of Sites.ReadWrite.All to limit which sites the app can have access. For more information, see Controlling app access on a specific SharePoint site collections.
When using this authentication type, the application has access to all mailboxes from your tenant. The application API permission Mail.Read means "Read mail in all mailboxes" and Mail.ReadWrite means "Read and write mail in all mailboxes". You can restrict the application permissions to specific mailboxes, so that the application accesses only the specified mailboxes. For more information, see Scoping application permissions to specific Exchange Online mailboxes.