This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(128, 8%, 22%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EA%3C/text%3E%3C/svg%3E)
Hi,
This is my first time doing something like this so I hope yall will forgive my newbie take on this!
I'm building a simple app to download files from an on-premise Sharepoint 2019 server. To test this, I want to acquire authentication without requiring user input (like a daemon app would) as a bearer token, which I will use to download my files. Is authentication using ACS the preferred auth method?
I have created an app on my Sharepoint test server with full privileges and acquired the client ID and secret, but I'm not sure where I should be querying using these credentials to acquire the token.
What other steps should I be performing to complete authentication with my on-premise Sharepoint server?
Thanks in advance!
A family of Microsoft on-premises document management and storage systems.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(252.8, 5%, 34%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ER%3C/text%3E%3C/svg%3E)
Hi @Mark,
You can follow the steps to get accesstoken. Please refer to the following nice article.
There are multiple authentication options available when it comes to SharePoint 2019. One of them is using Azure Active Directory (Azure AD) and Azure Access Control Service (ACS) as the trusted authentication provider.
To acquire an authentication token, you can use the OAuth 2.0 protocol with the client credentials flow. You will need to make an HTTP request to the token endpoint with the client ID and secret as credentials. The token endpoint URL for SharePoint 2019 using ACS is usually in the format of:
https://<your-tenant>.accesscontrol.windows.net/<your-relying-party>/tokens/OAuth/2
You can replace <your-tenant> with the name of your Azure AD tenant and <your-relying-party> with the relying party identifier of your SharePoint farm.
Here's an example of how to make the HTTP request in C# using the HttpClient class:
using System;
using System.Net.Http;
using System.Threading.Tasks;
namespace ConsoleApp1
{
class Program
{
static async Task Main(string[] args)
{
var httpClient = new HttpClient();
var clientId = "<your-client-id>";
var clientSecret = "<your-client-secret>";
var tokenEndpoint = "https://<your-tenant>.accesscontrol.windows.net/<your-relying-party>/tokens/OAuth/2";
var requestContent = new FormUrlEncodedContent(new[]
{
new KeyValuePair<string, string>("grant_type", "client_credentials"),
new KeyValuePair<string, string>("client_id", clientId),
new KeyValuePair<string, string>("client_secret", clientSecret),
new KeyValuePair<string, string>("resource", "<your-sharepoint-site-url>")
});
var response = await httpClient.PostAsync(tokenEndpoint, requestContent);
var responseContent = await response.Content.ReadAsStringAsync();
Console.WriteLine(responseContent);
}
}
}
In the above example, replace <your-client-id> and <your-client-secret> with the client ID and secret of your SharePoint app registration, and replace <your-tenant>, <your-relying-party>, and <your-sharepoint-site-url> with the appropriate values for your environment.
Once you have acquired the token, you can use it to make authenticated requests to SharePoint REST APIs to download files.
Thanks for the fast reply! I'll give it a try.
and
<your-relying-party>with the relying party identifier of your SharePoint farm.
May I ask where I can find this value? Or do I have to setup my server with something like AD FS before I can get this value?