Note
Access to this page requires authorization. You can try signing in or changing directories.
Access to this page requires authorization. You can try changing directories.
To enable Teams webinars v2 integration with Customer Insights – Journeys, organizations must configure tenant-level permissions. This is required because Teams doesn't allow user tokens for creating registrations or downloading attendance reports for virtual events.
By completing this setup, you'll:
- Send registrations from Customer Insights - Journeys to Teams when new attendees register.
- Populate the Check-in entity with attendance report data after the event ends.
Steps to configure Teams authentication
1. Navigate to Settings
- Go to Settings > Event management.
- Open the Teams authentication section.
- Select + New record and fill in:
- The record name
- The app ID (you'll generate this in the next steps)
2. Register an app in Microsoft Entra
- Go to the Microsoft Entra app registrations area.
- Create a new registration by selecting + New registration under App registrations.
- Fill out the app name.
- Select Register.
- Copy the application (client) ID.
3. Add the app ID in Customer Insights - Journeys
- Return to Customer Insights - Journeys > Settings > Teams authentication.
- Paste the app ID and Save the record.
- After you save and refresh the page, the "Federated Identity Credential Subject" field is populated. Copy the field contents and save it for the next step. The field contents may take a minute to appear.
4. Configure Federated credentials in your app in Microsoft Entra
- Navigate back to your app registration in Microsoft Entra.
- In the Microsoft Entra app registration area, go to Certificates & secrets and then to the Federated credentials tab.
- Select + Add credential and select Other issuer for the Federated credential scenario.
- Fill in:
- Issuer:
https://login.microsoftonline.com/<TenantID>/v2.0 - Value: Paste the Federated Identity Credential Subject (for example, /eid1/c/pub/t/...).
- Name: Add a descriptive name of your choice.
- Issuer:
- Select Add.
5. Grant API permissions
- Stay in your app registration in Microsoft Entra, go to API permissions, and select + Add a permission.
- Select Microsoft Graph in the API permissions name list.
- Select Application permissions in the pop-up dialog. Search for the following permissions and add each permission separately:
- OnlineMeetingArtifact.Read.All for attendance reports.
- VirtualEventRegistration-Anon.ReadWrite.All for registrations.
- VirtualEvent.Read.All to read webinar status.
- Next, Select Delegated permissions in the pop-up dialog. Add the following permission:
- VirtualEvent.ReadWrite for registrations and editing webinar records.
- Select Grant admin consent and confirm.
You've now completed the Teams authentication setup in Microsoft Entra and Customer Insights - Journeys.
Set up the required access policy
Microsoft Teams enforces an additional safeguard called an Application Access Policy (AAP). The AAP allows tenant admins to scope what data other applications can access. When configured, the policy ensures that Customer Insights - Journeys can only access webinars created by specific, approved users.
Without the AAP, Customer Insights - Journeys can't access certain data, such as the attendance report.
Add the AAP
To add the required AAP, run the following commands in PowerShell:
Connect-MicrosoftTeams
New-CsApplicationAccessPolicy -Identity <POLICY_NAME> -AppIds <APP_ID>
Grant-CsApplicationAccessPolicy -PolicyName <POLICY_NAME> -Global
Alternatively, you can grant the AAP at the group or user level. Learn more about supported configurations: Configure an application access policy for online meetings and virtual events.
Important
API permissions and the Application Access Policy (AAP) are essential for successful registration process management. If they aren't set up correctly, or if any policies and permissions are revoked, registrations in Customer Insights - Journeys and in Teams may fail. Also, if you grant the AAP on the user level, it needs to be granted for all users who want to create webinars in Customer Insights - Journeys.