Microsoft Teams Assignment integration
Microsoft Teams School setup guide
Note: the following is assumed to be true. If this is not the case, please look into this or contact support for further help:
- The school has an instance of Microsoft Teams that exists within their organisation.
- The active directory exists within the Azure Portal.
- The emails that students use to Log in to Firefly are identical to those that exist in the Active Directory.
- The school with which you wish to sync assignments is contained within an administrative unit (this is only needed if there are multiple schools on your Azure AD tenant)
Azure Portal Configuration
In order to allow Firefly to access Assignment and Class data from Teams the School will need to create an application registration within their Active Directory. This can be thought of as an entry point into the Active Directory that Firefly can use to query information governed by a set of predefined permissions.
Step 1
Navigate to https://portal.azure.com/ and log in.
Search for Active Directory in the search bar on top and click the highlighted item below.
Step 2
In the left-hand sidebar click on App Registrations. It should open the window to the right of the sidebar with all existing registrations, (depending on your organisation there may or may not be any).
Click on New Registration to begin.
Step 5
Next we need to create a client secret for the application. This is a secret password that the application uses to identify itself.
We suggest using a random password generator with 16 characters, without symbols.
Step 6
We need to set the permissions to control what the app has access to within your organisation.
- Click on API Permissions.
- To add a permission click on the plus marked Add Permissions button.
- Select Microsoft Graph.
Delegated permissions | Application permissions |
---|---|
EduAdministration.Read | Directory.ReadWrite.All |
EduAdministration.ReadWrite | EduAdministration.Read.All |
EduAssignments.ReadWrite | EduAssignments.ReadWrite.All |
EduRoster.ReadWrite | EduRoster.ReadWrite.All |
Group.ReadWrite.All | Group.ReadWrite.All |
GroupMember.ReadWrite.All | GroupMember.ReadWrite.All |
PrivilegedAccess.ReadWrite.AzureADGroup | Member.Read.Hidden |
Schedule.ReadWrite.All | TeamsActivity.Read.All |
TeamsApp.ReadWrite | |
User.ReadWrite.All | |
Directory.ReadWrite.All |
Once all permissions have been added. Make sure to click the highlighted Grant Admin Consent button.
To do this navigate to: Authentication > Advanced settings and select Yes
Name the username fireflyteacher and the name to match. Make sure to set a strong password for the user and take note of it. Ensure that block sign in is set to No.
The configuration process is now done. Make sure you have collected the following information :
- App Registration Client ID
- App Registration Client Secret
- App Registration Tenant ID
- Email Address of FireFly Teacher Account
- ObjectID of FireFly Teacher Account
- Password of FireFly Teacher Account
Once you are ready, hand forward onto Firefly.