The refresh token grant is used to replace expired access tokens with active ones by exchanging the refresh token at a token URI endpoint. The following credentials are required to connect using the refresh token grant.

Important: Once you obtain the credential information for your data source, you must store this information as a secret in AWS Secrets Manager. The secret allows you to connect using an OAuth 2.0 grant. When creating a connection, you must specify the name of the secret you created to store your data source credential information. See Storing your credentials in AWS Secrets Manager.
  • Service URL: the URL of the SharePoint site (or "site collection") to which you are connecting. For example, https://mycorp.sharepoint.com/sites/marketing/global.
  • Client ID: client ID key for your application.
  • Client Secret: client secret for your application.
  • Token URI: token URI or endpoint from which the driver fetches access tokens.
  • Refresh token: refresh token used to request a new access token or renew an expired one.
    Note: You can use a third-party application such as Postman to obtain a refresh token. See Obtaining refresh token using Postman for details.