How to configure MS teams to allow Salesbox to connect

Salesbox Microsoft Team integration needs permission to access the proper resources in your organisation. That can only be granted by the Microsoft admin.

So firstly, identify who is the Microsoft admin in your organisation and ask them to follow this guideline: https://docs.microsoft.com/en-us/azure/active-directory/manage-apps/configure-admin-consent-workflow

Detailed step by step instruction: 

  1. Sign in to the Azure portal as a global administrator.
  2. Click All services at the top of the left-hand navigation menu. The Azure Active Directory Extension opens.
  3. In the filter search box, type “Azure Active Directory” and select the Azure Active Directory item.
  4. From the navigation menu, click Enterprise applications.
  5. Under Manage, select User settings.
  6. Under Admin consent requests (Preview), set Users can request admin consent to apps they are unable to consent to to Yes.
  1. Sign in to the Azure portal as a global administrator.
  2. Click All services at the top of the left-hand navigation menu. The Azure Active Directory Extension opens.
  3. In the filter search box, type “Azure Active Directory” and select the Azure Active Directory item.
  4. From the navigation menu, click Enterprise applications.
  5. Under Manage, select User settings.
  6. Under Admin consent requests (Preview), set Users can request admin consent to apps they are unable to consent to to Yes.Configure admin consent workflow settings
  7. Configure the following settings:
    • Select users to review admin consent requests. Select reviewers for this workflow from a set of users that have the global administrator, cloud application administrator, and application administrator roles.
    • Selected users will receive email notifications for requests. Enable or disable email notifications to the reviewers when a request is made.
    • Selected users will receive request expiration reminders. Enable or disable reminder email notifications to the reviewers when a request is about to expire.
    • Consent request expires after (days). Specify how long requests stay valid.
  8. Select Save. It can take up to an hour for the feature to become enabled.

After the admin consent workflow is enabled, users can request admin approval for an application they’re unauthorized to consent to. The following steps describe user’s experience when requesting approval.

  1. The user attempts to sign in to the application.
  2. The Approval required message appears. The user types a justification for needing access to the app, and then selects Request approval.Screenshot shows an Approval required dialog box where you can Request approval.
  3. A Request sent message confirms that the request was submitted to the admin. If the user sends several requests, only the first request is submitted to the admin.Screenshot shows the Request sent confirmation.
  4. The user receives an email notification when their request is approved, denied, or blocked.

To review the admin consent requests and take action:

  1. Sign in to the Azure portal as one of the registered reviewers of the admin consent workflow.
  2. Select All services at the top of the left-hand navigation menu. The Azure Active Directory Extension opens.
  3. In the filter search box, type “Azure Active Directory” and select the Azure Active Directory item.
  4. From the navigation menu, click Enterprise applications.
  5. Under Activity, select Admin consent requests (Preview)Reviewers will only see admin requests that were created after they were designated as a reviewer.
  6. Select the application that is being requested.
  7. Review details about the request:
    • To see who is requesting access and why, select the Requested by tab.
    • To see what permissions are being requested by the application, select Review permissions and consent.
  8. Evaluate the request and take the appropriate action:
    • Approve the request. To approve a request, grant admin consent to the application. Once a request is approved, all requestors are notified that they have been granted access.
    • Deny the request. To deny a request, you must provide a justification that will be provided to all requestors. Once a request is denied, all requestors are notified that they have been denied access to the application. Denying a request won’t prevent users from requesting admin consent to the app again in the future.
    • Block the request. To block a request, you must provide a justification that will be provided to all requestors. Once a request is blocked, all requestors are notified they’ve been denied access to the application. Blocking a request creates a service principal object for the application in your tenant in a disabled state. Users won’t be able to request admin consent to the application in the future.