In this tutorial, you will learn how you can configure WPO365 to retrieve data from Microsoft Graph using application permissions. Application permissions, sometimes called app roles are used in the app-only access scenario, without a signed-in user present. The application will be able to access any data that the permission is associated with.
Please note If you have already configured the OpenID Connect based Single Sign-on feature of the WPO365 | LOGIN plugin then you do not need to register a new application in Microsoft Entra ID and can skip ahead to this tutorial’s Lesson – Configure WPO365.
You will need to configure application permissions for the following scenarios.
- You configured SAML 2.0 based Single Sign-on but need to access Microsoft Graph to retrieve a user’s Azure AD profile picture or a user’s Azure AD group memberships – for example to dynamically enroll a user onto a LearnDash course or assign a WordPress role.
- You intend to synchronize users from Azure AD to WordPress regularly e.g. on a daily basis.
- You to create users in Azure AD B2C / Microsoft Entra External ID from WordPress.