New Question
 

Back to www.paessler.com

 
PRTG Network Monitor

Intuitive to Use.
Easy to manage.

300.000 administrators have chosen PRTG to monitor their network. Find out how you can reduce cost, increase QoS and ease planning, as well.

Free PRTG
Download >>
 

What is this?

This knowledgebase contains questions and answers about PRTG Network Monitor and network monitoring in general. You are invited to get involved by asking and answering questions!

Learn more

 

Top Tags


View all Tags


How do I obtain credentials and set permissions for the Microsoft 365 sensors?

Votes:

0

Your Vote:

Up

Down

I want to set up the Microsoft 365 Service Status sensor or the Microsoft 365 Service Status Advanced sensor to monitor the status of the services of a Microsoft 365 subscription.
For these sensors to work, I have to define credentials for Microsoft 365 in my PRTG installation and set permissions for the Office 365 Management APIs.

Where do I get these credentials? How do I set the required permission?

api azure azure-ad credentials microsoft-365 office-365 permissions prtg

Created on Aug 18, 2020 5:58:19 AM by Maike Guba [Paessler Support]

Last change on Oct 20, 2020 10:33:02 AM by Maike Guba [Paessler Support]



8 Replies

Accepted Answer

Votes:

1

Your Vote:

Up

Down

Credentials for Microsoft 365 and permission for the Office 365 Management API

Before you can set up the Microsoft 365 Service Status sensor or the Microsoft 365 Service Status Advanced sensor, you need to define credentials for Microsoft 365 in settings that are higher in the object hierarchy, for example, in the settings of the parent device.

The credentials you need are the Tenant ID, the Client ID, and the Client Secret. You obtain the credentials in the Microsoft Azure Portal. There you can also set the permission that the Microsoft 365 sensors require to read data from the Office 365 Management APIs.

The following step-by-step guide shows you how to obtain the necessary credentials and how to set the required API permission.

Log in to the Microsoft Azure Portal under https://portal.azure.com and follow

  • Step 1: Get the client ID and the tenant ID
  • Step 2: Get the client secret
  • Step 3: Set the permissions for the Office 365 Management APIs
  • Step 4: Authorize the new application

Step 1: Get the client ID and the tenant ID

Take the following steps to register your application with Azure AD to be assigned a client ID.

  1. Go to the App registrations tab.
    App Registrations Tab
    Click to enlarge.
  2. Click New registration to open the Register an application dialog.
    Register Application Dialog
    Click to enlarge.
    • Enter a display name, for example, Microsoft 365 Service Status.
    • Leave all other settings as they are.
    • Optional: Enter the redirect URI if you already know it. If you do not know it yet, you can enter it later.
    • Click Register to register the new application. The Overview tab of the newly registered application opens.
      New Application Overview Tab
      Click to enlarge.
    • Copy the Application (client) ID and the Directory (tenant) ID. These are the client ID and the tenant ID that you need to enter in PRTG.

Step 2: Get the client secret

Take the following steps to create an application password, also known as client secret.

  1. Go to the Certificates & secrets tab.
    Certificates & Secrets Tab
    Click to enlarge.
  2. Click New client secret to open the Add a client secret dialog.
    New Client Secret Dialog
    Click to enlarge.
    • Enter a Description, for example, Microsoft 365 Client Secret.
    • Select a period after which the client secret expires.
    • Click Add to create and display the new client secret for your application.
      New Client Secret Display
      Click to enlarge.
  3. Copy the client secret to enter it in PRTG.
    Note: Make sure that you directly copy the client secret after you created it. If you leave the page, the client secret is not shown anymore. You have to create a new client secret.

Step 3: Set the permission for the Office 365 Management APIs

Take the following steps to set the required permission for the Microsoft 365 sensors to be able to query data from the Office 365 Management APIs.

  1. Go to the API permissions tab.
    API Permissions Tab
    Click to enlarge.
  2. Click Add a permission to open the Request API permissions dialog.
  3. Select the Office 365 Management APIs tile.
    API Permissions Dialog
    Click to enlarge.
    • Click Application permissions.
    • Enable the check box next to ServiceHealth.Read.
    • Click Add permissions to add the required permission.

Step 4: Authorize the new application

Take the following steps to authorize the new application.

  1. Use the following URL:
    https://login.windows.net/common/oauth2/authorize?response_type=code&resource=https%3A%2F%2Fmanage.office.com&client_id={your_client_id}
    • For your_client_ID, enter the client ID of the newly created application.
  2. Click Accept to accept the request.

And that’s it. Now you can enter your tenant ID, client ID, and client secret in PRTG to start monitoring with the Microsoft 365 sensors.

More

Created on Aug 18, 2020 6:05:28 AM by Maike Guba [Paessler Support]

Last change on Oct 20, 2020 10:34:21 AM by Maike Guba [Paessler Support]



Votes:

1

Your Vote:

Up

Down

Do you have a PRTG step by step guide on how to do this? The Microsoft.com docs are WAY to generic to be of ANY value.

Created on Aug 25, 2020 3:03:00 PM by youngr13 (30) 1



Votes:

0

Your Vote:

Up

Down

At the moment, there is no step by step guide.

Kind Regards,
Matthias Kupfer

Created on Aug 26, 2020 11:30:19 AM by Matthias Kupfer [Paessler Support]



Votes:

1

Your Vote:

Up

Down

https://team-debold.de/2016/07/22/prtg-office-365-status-ueberwachen/

here is an step by step guide

i try this today and it still works for the new sensor !

Created on Aug 28, 2020 8:29:20 AM by squirrel (10)



Votes:

0

Your Vote:

Up

Down

Hi,

Microsoft's doc has been updated recently and yet the screenshots are still from an old version of the AAD management console ...

Anyway, I've done it all (client ID, tenant ID, secret, api permissions) and yet I'm still getting a 401 unauthorized with this sensor ...

Created on Sep 15, 2020 9:54:48 AM by gbrissard (0) 1



Votes:

0

Your Vote:

Up

Down

Please check again if you have set the permissions as described in the article How do I set permissions for the Office 365 Management APIs. If the permissions do not look like the ones shown in the screenshot in the article, please use the "Add a permission" button to add them.

Kind regards,
Sasa Ignjatovic, Tech Support Team

Created on Sep 16, 2020 9:19:13 AM by Sasa Ignjatovic [Paessler Support]



Votes:

0

Your Vote:

Up

Down

Please create a better guide how to use this sensor. It's quite difficult to go thru your documentation.

Created on Oct 19, 2020 3:34:10 PM by michaelsachs (0) 1



Votes:

0

Your Vote:

Up

Down

Thank you for your feedback.

Currently this is the only guide we have on how to set up credentials for Azure AD, however we will try to improve it so that it is easier to follow.

Kind regards,
Sasa Ignjatovic, Tech Support Team

Created on Oct 20, 2020 5:33:39 AM by Sasa Ignjatovic [Paessler Support]



Please log in or register to enter your reply.


Disclaimer: The information in the Paessler Knowledge Base comes without warranty of any kind. Use at your own risk. Before applying any instructions please exercise proper system administrator housekeeping. You must make sure that a proper backup of all your data is available.