Get a Certificate authenticated SharePoint context to run Context.Site.CreateSPAsyncReadJob()

Question

Get a Certificate authenticated SharePoint context to run Context.Site.CreateSPAsyncReadJob()

Vish Pothaganti 66

Hello,

I was able to successfully create a SPAsyncReadJob and get the manifest.xml file created on azure using the sample here https://gist.github.com/techmadness/484e7de0a7c51e5faf952a79f1eacb85

I then tried to get the context without UserName/Password and instead used a Certificate I uploaded to the same Azure application like this:
var clientContext = authenticationManager.GetAzureADAppOnlyAuthenticatedContext(SiteURL, ClientId, TenantId, Cert, AzureEnvironment.Production);

The context gets created fine but I get a 401 Unauthorized when trying to create the SPAsyncReadJob on the site.

Can you please advice how to get a authenticated context to create SPAsyncReadJob without using UserName/Password and only by using ClientID/ClientSecret/Certificate.

Answer accepted by question author

0 additional answers

Your answer

Answer 1

ZhengyuGuo 10,591 Moderator

Hi @Vish Pothaganti ,

Instead of Azure AD application, please use the SharePoint application which register in this url:

https://siteurl/_layouts/15/appregnew.aspx

And then grant Full Control permission in SharePoint administration site:

https://tenantname-admin.sharepoint.com/_layouts/15/appinv.aspx

Click Trust:

Then in code snippet, use OfficeDevPnP.Core.AuthenticationManager().GetAppOnlyAuthenticatedContext(siteUrl,clientId,clientSecret) function:

            string siteUrl = "your siteurl";  
            string clientId = "your client Id";  
            string clientSecret = "your client secret";  
  
            using (var ctx = new OfficeDevPnP.Core.AuthenticationManager().GetAppOnlyAuthenticatedContext(siteUrl,clientId,clientSecret))  
            {  
                
  
            };

Detailed steps to register app and grant permission, please refer this official document, Permission is necessary to set, otherwise, it will also return 401 unauthorized:

Granting access using SharePoint App-Only

Thanks
Best Regards

If the response is helpful, please click "Accept Answer" and upvote it.

Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.

Vish Pothaganti 66 Reputation points

2021-04-29T12:38:59.99+00:00

Do we have to create the SharePoint application on every Site individually? If I want to run the application on 100 different sites, am I supposed to handle 100 different ClientID/ClientSecret combinations??
ZhengyuGuo 10,591 Reputation points Moderator

2021-04-30T04:56:50.12+00:00

No, once the application set with Tenant Full Control, it will have the permission for all sites, only one application is enough.

And you can repeat using the same Client ID and Secret in the code snippet.
Vish Pothaganti 66 Reputation points

2021-07-21T13:24:24.117+00:00

What is the least Permission level to create SPAsyncReadJob(). In the example above Right=FullControl. Is there any other permission level lower than this. Please provide a list of options which can be entered in "Right"

Share via

Get a Certificate authenticated SharePoint context to run Context.Site.CreateSPAsyncReadJob()

0 additional answers

Your answer