Skip to content
English
Go to Qooper Homepage
  • There are no suggestions because the search field is empty.

How to Connect Microsoft Entra ID (Azure Active Directory) to Qooper

Overview

Connecting Microsoft Entra ID (formerly Azure Active Directory) to Qooper for profile photo integration allows employee photos stored in your directory to sync automatically into Qooper using the Microsoft Graph API.

Once your Microsoft Entra ID application is configured and credentials are provided, the Qooper team securely establishes the connection and enables automated photo synchronization.

This ensures user profiles in Qooper remain visually up to date without manual uploads.

Benefits of Microsoft Entra ID Photo Integration

  • Automatic Photo Sync: User profile photos stored in Microsoft Entra ID sync directly into Qooper.

  • Consistent Branding & Identity: Employee photos remain consistent across systems.

  • Zero Manual Uploads: No need for administrators or participants to manually upload profile pictures.

  • Secure Microsoft Graph Authentication: The integration uses Microsoft OAuth authentication and Microsoft Graph API to securely retrieve user photos.

To begin, you’ll need to create and configure an application in Microsoft Entra ID.

(1) Register Your Application in Microsoft Entra ID 👤

Register the Application:

  1. Sign in to Microsoft Entra ID.
  2. Navigate to App registrations.
  3. Click + New Registration.
  4. Provide a name for your application (e.g., “Qooper Photo Sync”).
  5. Under Supported Account Types, select:
    Accounts in this organizational directory only.
  6. In the Redirect URI section:
    • Select platform type: Web
    • Redirect URI: https://www.workato.com/oauth/callback

After registration, securely save:

  • Application (Client) ID
  • Directory (Tenant) ID

(2) Assign Required Microsoft Graph Permissions

To enable profile photo retrieval through Microsoft Graph API, configure the following permissions:

  1. Go to API permissions.
  2. Click + Add a permission.
  3. Select Microsoft Graph.
  4. Choose Application permissions.

Required Permissions for Photo Sync

  • User.Read.All
  • ProfilePhoto.Read.All (Admin Consent Required by Microsoft Graph API)

(Additional permissions are not required unless you are syncing additional user attributes.)

  1. Click Add permissions.
  2. Click Grant admin consent (administrator access required).
  3. Confirm the status shows Granted.

(3) Generate a Client Secret 🔑

  1. Navigate to Certificates & Secrets.
  2. Click + New Client Secret.
  3. Add a description and expiration period.
  4. Click Add.
  5. Copy and securely store the Secret Value.

Important: The client secret value is shown only at the time of creation and cannot be viewed again later. Be sure to copy and store it securely.

(4) Provide Credentials to Qooper

Share the following details securely with the Qooper team via email:

  • Application (Client) ID
  • Directory (Tenant) ID
  • Client Secret (Value)

The Qooper team will:

  • Establish a secure connection to Microsoft Graph
  • Validate photo access permissions
  • Test photo retrieval
  • Activate automated profile photo sync

Done 🎉

Your Microsoft Entra ID profile photo integration is successfully configured.

Employee photos can now sync automatically into Qooper via Microsoft Graph API, ensuring profiles remain accurate and up to date without manual effort.