EntraCP

Set the credentials

Follow this article to set the credentials used by EntraCP to connect to your Entra ID tenant.

Prerequisites

  • An app registration created for EntraCP in your Entra ID tenant.
  • The app registration has either a valid client secret or client certificate.

Add new credentials to a tenant

The tenant can be added from the EntraCP global configuration page in the central administration, or using PowerShell:

Follow the steps below to add a connection to your Entra ID tenant using the Central Administration:

  • Navigate to the SharePoint Central Administration > Security > EntraCP Global configuration.
  • In the section Register a new Microsoft Entra ID tenant, fill the fields to add a connection to your tenant.
  • Click on Add tenant to save your changes.

Run the script below to add a connection to your Entra ID tenant using Powershell:

Add-Type -AssemblyName "Yvand.EntraCP, Version=1.0.0.0, Culture=neutral, PublicKeyToken=65dc6b5903b51636"
$config = [Yvand.EntraClaimsProvider.EntraCP]::GetConfiguration()
$settings = $config.Settings

# Add a tenant using a client secret
$tenant = New-Object "Yvand.EntraClaimsProvider.Configuration.EntraIDTenant"
$tenant.Name = "TENANTNAME.onmicrosoft.com"
$tenant.SetCredentials("clientId", "clientSecret")
$settings.EntraIDTenants.Add($tenant)
$config.ApplySettings($settings, $true)

# Add a tenant using a client certificate
$tenant = New-Object "Yvand.EntraClaimsProvider.Configuration.EntraIDTenant"
$tenant.Name = "TENANTNAME.onmicrosoft.com"
$certificateFilePath = "pfxCertificateFilePath"
$certificatePassword = "pfxCertificatePassword"
$tenant.SetCredentials("clientId", $certificateFilePath, $certificatePassword)
$settings.EntraIDTenants.Add($tenant)
$config.ApplySettings($settings, $true)

# Commit the configuration to the database
$config.Update($true)

Update the credentials of a tenant

Note

You can use the central administration only if you want to update a client secret. To update a client certificate, use PowerShell

Follow the steps below to edit a connection to your Entra ID tenant using the Central Administration:

  • Navigate to the SharePoint Central Administration > Security > EntraCP Global configuration.
  • In the section Registered Microsoft Entra ID tenants, click on Edit next to the tenant you want to update.
  • Make your necessary changes.
  • Click on Update to save them.

Run the scripts below to update a connection to your Entra ID tenant using Powershell:

Set a new client secret

Add-Type -AssemblyName "Yvand.EntraCP, Version=1.0.0.0, Culture=neutral, PublicKeyToken=65dc6b5903b51636"
$config = [Yvand.EntraClaimsProvider.EntraCP]::GetConfiguration()
$config.UpdateTenantCredentials("tenantNameToUpdate", "newClientSecret")
$config.Update($true)

Set a new client certificate

Add-Type -AssemblyName "Yvand.EntraCP, Version=1.0.0.0, Culture=neutral, PublicKeyToken=65dc6b5903b51636"
$config = [Yvand.EntraClaimsProvider.EntraCP]::GetConfiguration()
$newCertificatePath = "C:\YvanData\config\certs\azurecp.aadcert.pfx"
$newCertificatePassword = "certicicatePassword"
$config.UpdateTenantCredentials("tenantNameToUpdate", $newCertificatePath, $newCertificatePassword)
$config.Update($true)
Last updated on August 21, 2025
Edit this page on GitHub
Prev
Remove
Next
Troubleshooting