⌘K
v2026.1 Open Portal ↗
On this page

Azure AD / Microsoft

Integration Overview

The Azure AD and Microsoft 365 integration covers three main areas: identity (Azure AD SSO and user sync, covered in Azure AD SSO), communication (Microsoft Teams for notifications and war room integration), and content (SharePoint for knowledge article source sync). All integrations use the same app registration in Azure tenant df4d171f-6cca-4c87-84cd-f299e4fca3a9.

⚙️ Minimum Requirements
  • Azure App: Enterprise app registered with User.Read.All, Group.Read.All, Mail.Read for M365 integration
  • AWS AppFlow: Flow stackflow-azure-ad-users configured for user/group sync from Azure AD
  • Secrets Manager: Azure credentials at stackflow/integrations/azure-m365
  • DynamoDB: StackFlow_AzureGroupMap table for group-to-role mapping

User Sync

Beyond the OBO authentication flow, StackFlow can sync user profiles and group memberships from Azure AD on a scheduled basis. This ensures user details (names, departments, managers) stay current even when users don't log in frequently. Sync uses Microsoft Graph API with the User.Read.All and GroupMember.Read.All permissions.

curl -X POST https://your-instance.stackflow-tech.com/prod/api/admin/sync/azure-ad   -H "Authorization: Bearer $ADMIN_TOKEN"   -H "Content-Type: application/json"   -d '{"sync_type": "full", "include_groups": true}'

Teams Integration

The Microsoft Teams integration delivers StackFlow notifications to Teams channels and enables creating incidents directly from Teams messages. Configure incoming webhooks in Teams and add the webhook URL to the StackFlow Notification Router configuration for the relevant events. The Teams connector formats notifications as adaptive cards with priority-color coding and direct action buttons.

Teams FeatureConfiguration
Notification cardsOutbound webhook URL in Notification Router
War Room channelAuto-created Teams channel per Major Incident
Slash command (/newincident)Teams app installation required
Meeting join link in war roomTeams API OAuth scope: OnlineMeetings.ReadWrite

SharePoint Integration

SharePoint document libraries can be configured as knowledge base content sources. StackFlow periodically fetches documents from configured SharePoint sites, converts them to KB article format, and indexes them in the Bedrock Knowledge Base. This enables the AI Copilot to answer questions from SharePoint content without requiring users to manually migrate documents.

Content Permissions: SharePoint documents imported to StackFlow inherit the article-level access control set in the import configuration, not the original SharePoint permissions. Ensure sensitive SharePoint content is imported with appropriate audience restrictions (e.g., "Agents Only").

Microsoft 365 Compliance

For organizations using Microsoft Purview for compliance management, StackFlow can export ITSM audit logs to Microsoft Purview audit trails via the Microsoft 365 Management Activity API. This provides a unified compliance audit view across Microsoft and StackFlow activity logs.

← Previous
Integration Hub
All available connectors
AppFlow
AWS AppFlow data pipelines