Setting Up Microsoft 365 Review
When a review cycle is initiated for an agreement document in the Conga CLM application, the document is temporarily stored in SharePoint. The reviewers can collaboratively review and edit the document and view live changes. Once the review cycle for the document has ended, the document is removed from SharePoint. You need to set up various configurations in Conga CLM, SharePoint, and Azure App for these applications to communicate with each other for document reviews through Microsoft 365.
This section describes how to set up Office 365 review by configuring the remote site settings, Azure app, and Office 365 settings.
Prerequisites
- You have subscribed to Microsoft 365 E3 or E5.
- Azure Client ID, Client Secret, and Active Directory are available. Contact your IT administrator to get these.
- Users are allowed to use Microsoft 365. For more information, see Prerequisites for Parallel Review.
- The following comply system properties are configured:
- Parallel Review property is enabled
- XAJS End Point property with X-Author for Contracts 2.0 (XAJS) URL
- Enable Document Versioning property is enabled
- The following email templates are configured and available out-of-the-box. You can make the necessary changes to the content as per your requirement. For more information, see Configuring Classic Email Templates.
- Agreement Office365 External Review Notification
- Agreement Office365 Internal Review Notification
- Agreement Office365 Review Notification
- End Review Office 365
- Office365 Review Cycle Cancel Notification
To create a dedicated SharePoint site (Optional)
When an Microsoft 365 review cycle is initiated, CLM application temporarily stores the agreement documents in a SharePoint site. You can use your organization's default site for the CLM to store documents for review or create a site in your organization's SharePoint dedicated for this purpose. Within the dedicated site, you can also create a folder where CLM should store all the documents for review. If you do not create a folder, SharePoint creates a default folder in the configured site and adds all documents for review to the default folder.
To use the default site, skip this section and proceed to the next section.
To use a dedicated site for review documents, create a SharePoint Communication Site. For more information, see Create a Site in SharePoint and Overview of external sharing in SharePoint and OneDrive in Microsoft 365 (Microsoft documentation).
Copy the site name and save it securely. You will need it while specifying Sharepoint site name in Microsoft 365 settings.
To collect the Azure client ID and client secret from the Azure portal
- Log in to the Azure portal as an administrator.
- Select Azure Active Directory.
- Select App registrations.
-
Select New registration and enter
Conga CLM Application
. - Click Register.
- From the left navigation bar, select Overview.
- Copy the Application (Client) ID and save it securely. You will need it while configuring Microsoft 365 settings.
- From the left navigation bar, select Certificates & secrets.
- Click New client secret.
- Add a description, select the validity duration, and select Add. The value of the client secret is displayed. Copy this value and save it securely. You will not be able to retrieve the key later.
To configure flows in the Azure app
You need to provide the required permissions to the Azure app for all the reviewers to allow the Azure app to create folders and files. You can use one of the following flows to facilitate interaction between the Azure app and SharePoint.
- Application Flow: The Azure app can directly interact with SharePoint without a signed-in user present. The Azure app can access any data that the permission is associated with. For example, if the Azure app is granted the Files.Read.All application permission, it will be able to read any file in Sharepoint. For more information, see Application permissions (Microsoft Documentation) and Application access (Microsoft Documentation).
- Delegated Flow: The Azure app cannot interact with SharePoint without signed-in user present. Both the review initiator and the Azure app must have permission to create a folder or file and add permission in SharePoint. When sending a document for review, the review initiator must log in every time. Hence, this is a restrictive flow. For more information, see Delegated permissions (Microsoft Documentation) and Delegated access (Microsoft Documentation).
Application Permission flow
Delegated Permission flow
To configure remote site settings in CLM
Remote Site Settings control access to external web resources from your Salesforce organization. These resources can include services, APIs, or websites that your Salesforce organization needs to communicate with. By default, Salesforce blocks calls to external URLs from within its platform due to security considerations. You can use Remote Site Settings to explicitly allow these calls.
For Microsoft 365 review, you need to configure Remote Site Settings to maintain a secure environment while allowing your Salesforce organization to interact seamlessly with Sharepoint application. You need to add remote sites for Microsoft 365 login, MS Graph URL, and SharePoint URL.
To configure the Microsoft 365 custom settings in CLM
You can add multiple Microsoft 365 settings but can activate only one setting at a time.