I’ll be speaking at aOS Conference Kuala Lampur

Manoj V Karunarathne-01[25650]

DATE:

TIME:

VENUE:

FEE:

23RD OCTOBER 2018

TUESDAY

09.00AM TO 5.30PM

Registration starts at 8.30am

EVENT FLOOR

MICROSOFT MALAYSIA,

18TH FLOOR, MENARA SHELL.

(Microsoft New Office)

FREE ENTRANCE

**Register NOW! Seats are on first come first serve basis**

REGISTER HERE!!!

Who Is This For?

The content is suited to business people, managers, CIOs, executives, and end users.

There is also content for Technical roles (IT Pros, Developers and Hands on Power Users) to learn the how and why of many Office 365 (and SharePoint) apps.

If you are someone who sees the digital workplace as a way to improve the way you work, increase your team’s productivity and deliver better results – come and learn how.

· Business Decision Makers – what it can do?

· IT Pro – how to migrate or manage?

· Developers – how to build or configure it?

TIME

BUSINESS DECISION

IT PRO

DEVELOPERS

08.30 AM – 09.00 AM

Registration

09.00 AM – 09.45 AM

Opening & Key Note

10.00 AM – 10.45 AM

Transforming Your Organization into a Digital Workplace

A Deep Dive into Microsoft 365 Security

A Deep Dive into Microsoft 365 Security

11.00 AM – 11.45 AM

Delivering tangible business value with Office 365

Single Sign on and Multi Factor Authentication with Azure AD

Lean, Scrum and Low code approach of SharePoint and O365 projects

12.00 PM – 12.45 PM

Accelerate success and time-to-value for Microsoft 365 with best practices from the field

Data Leakage Prevention and Rights Management in Office365

Bot Framework with Microsoft Team

01.00 PM – 01.45 PM

Lunch

02.00 PM – 02.45 PM

The 4th Dimensional Meeting

Migrating to SharePoint Online – Real-life Experiences

Accelerating development and business with Azure Containers

03.00 PM – 03.45 PM

Bots – Changing the way we engage with technology

How your SharePoint deployment can benefit from Azure capabilities

Microsoft Graph: Get the power of Excel functions into your Web Applications

04.00 PM – 04.45 PM

All about documents in O365 and SharePoint

IOT for Beginners and IT Pros

Using Graph API to read Outlook mail for Accounting

05.00 PM – 05.30 PM

Wrap Up & Panel Discussion

Share & exchange, Worldwide

In conjunction with our inaugural ASEAN tour, aOS is bringing its global experts to mingle with Malaysia’s Azure and Office 365 user’s community to exchange ideas on how to maximize your usage and ROI from Microsoft’s cloud technologies.

CONNECT: Meet like-minded people, make new connections, build your support network. See a whole range of products and demonstrations ALL in the one place!

LEARN: Whether it be training, up-skilling or starting from scratch, the opportunities to learn from the BEST in the field are here.

EXPERIENCE: New innovation and inspiring speakers. Walk away with ideas and momentum. We bring you LOTS of what is NEW in Microsoft Office 365 and Azure.

Technologies Content – Microsoft Teams (and Groups), PowerApps, Flow, Power BI, OneDrive, Microsoft Forms, Skype for Business, Azure, Yammer, OneNote, Office 365, many 3rd party tools and our awesome line up of SharePoint content.

Business and Productivity Content – Digital Workspace, Security, Governance, Information Architecture, Collaboration, Data Migration, User Adoption, Agile Development, Mobile and Paperless Workforce.

With 18 SESSIONS (MVPs and domain experts) coming from 14 INTERNATIONAL SPEAKERS, 7 COUNTRIES this event is THE Office 365 event for this year. With limited spaces available, it is on a first come, first serve basis. Be there or be square!…. (read more here!)

Advertisement

Azure AD App Only Authentication

In a simple way, App Only authentication is the ideal method if you want to execute  a task by daemon. This allows you to execute some code without the permissions of a user or without an auth token of a user.

As part of a series of articles, idea of this 1st post is to give you an basic  fundamental understanding on creating an Azure AD App and grant permissions for this App to communicate with SPO.

let’s get this started. Simply head on to your Office365 home page and switch to Admin Centers. From the left pane, click on “Azure Active Directory”. From Azure AD, search for “App Registrations” and click “Add new application registration” link.

A new application interface will pop-up for you. Enter a name, Application type and Sign-on URL and click “Create”. Sign-in URL can be any and it also can be amended later to reflect a different one. A future post will discuss this again on what sort of URLs are used here.

image 

Once the app creation done, you will be given with the app ID and other details related to it.

image

Next- Select Settings –> Required permissions and Add

clip_image001

clip_image002

In this case the API going to be SPO. You can choose the right API based on the requirement.

image

Next, hit “Grant Permission” button on the required permissions tab to provide none-tenant admin user access the application.

A self-signed or public (commercial) certificate must be provided now and then update the Azure AD manifest accordingly.

Following PS can be used to provision the certificate but ensure you have installed OfficeDev PnP PowerShell.

$certroot = 'C:\Site Creator'
$certname = "IntelAi-Cert-1"
$password = ConvertTo-SecureString "P@$$w0rd" -AsPlainText -Force
$startdate = Get-Date
$enddate = $startdate.AddYears(4)
makecert.exe -r -pe -n "CN=$certname" -b ($startdate.ToString("MM/dd/yyyy")) -e ($enddate.ToString("MM/dd/yyyy")) -ss my -len 2048
$cert = Get-ChildItem Cert:\CurrentUser\My | ? {$_.Subject -eq "CN=$certname"}
Export-Certificate -Type CERT -FilePath "$certroot\$certname.cer" -Cert $cert -Force
Export-PfxCertificate -FilePath "$certroot\$certname.pfx" -Cert $cert -Password $password -Force

Following line will copy a string to your clipboard

Get-PnPAzureADManifestKeyCredentials -CertPath 'C:\Site Creator\IntelAi-Cert-1.cer' | clip

Following is how the copied string would look like. It has to be added to the manifest file of the Azure AD application.

"keyCredentials": [
 {
  "customKeyIdentifier": "5lca+kziogw7T6MB4kUrxseK5m8=",
  "keyId": "84153f1a-90b7-4802-b99a-bb75d4f9a35b",
  "type": "AsymmetricX509Cert",
  "usage": "Verify",
  "value": "MIIDAjCCAe6gAwIBAgIQkawCJU0cWYxH8RamKNuqqTAJBgUrDgMCHQUAMBkx
 }
],

Select your application under app registrations in Azure AD. Replace the “KeyCredentials”:[], section, as shown below.

image

Now this can be tested whether the application has required permissions to connect to the SharePoint Online site. For the ClientID, you need to provide application ID of the app you have created.

$password = ConvertTo-SecureString "P@$$w0rd" -AsPlainText -Force
Connect-PnPOnline -Url https://site.sharepoint.com/ -ClientId 0c01f61e-ba27-4ae7-ab19-174884a949fc -CertificatePath 'C:\Site Creator\Site-Cert-1.pfx' -CertificatePassword $password -Tenant intelai.onmicrosoft.com
$myWeb = Get-PnPWeb
$myWeb.Title

DISCLAIMER NOTE: This is an enthusiast post and is not sponsored by Microsoft or any other vendor.