Skip to content

Hybrid On-Premise with SharePoint Online

By linking your Hybrid On-Premise and SharePoint Online account with Hire2Retire, you can authorize RoboMQ to have a delegated access on your behalf to both applications.

Create a Connection

Hybrid On-Premise Service Connection

Hire2Retire requires the following details to create a OnPremise Service Connection

  • Connection Name - A user defined nomenclature for your connection. By default, the connection name is "Connection-OnPremise Service", you can change the name as per your preferences.
  • Host - The host name is the IP address of your Active Directory Server.
  • Port - The TCP/IP port on which the Active Directory server is listening. Hire2Retire will only establish the LDAP connection with the SSL port. (The default is 636)
  • Base DN - It is a collection of objects that Hire2Retire will access within an Active Directory network. An object can be a single user, a group of users or a hardware component, such as a computer or printer. Each base DN holds a database containing object identity information. It should be given in the format "DC=example-domain,DC=com"
  • Public key of RSA key pair - RSA public key which will be used to encrypt the config file. To know the detailed steps to generate RSA key pair, click here.

OnPremise Service Connection

Figure 1. Hybrid On-Premise Service Connection


OnPremise Service Connection

Figure 2. Hybrid On-Premise Service Connection for Multi Domain Controller

If you are configuring a connection with multi-domain controller setup, you can provide host values for each domain controller in your AD along with their respective base DN and port. You can also provide comma separated list of IP/host addresses for each domain controller.


After filling in the credentials you need to clicks on the "link account" button. After account is successfully linked, follow the Instructions given below to setup Active Directory On-Prem Agent.

Instructions to set up On-Prem Agent

Figure 3. Instructions to set up On-Prem Agent

SharePoint Online Connection

To establish SharePoint Online connection, you need to have an application registered on your tenant with required permissions. You can either register a new application or use an existing application and add the required permissions.

Hire2Retire requires the following details to create a connection.

  • Client Id - Entra ID Application's Unique Identifier.
  • Tenant Id - Unique identifier of the Entra ID instance.
  • SharePoint Online Admin Site URL - A unique web address used by SharePoint Online administrators to access the SharePoint Admin Center.

If you can't find these values, refer to our detailed guide

Hybrid with SharePoint Online Connection Name

Figure 4. Hybrid On-Premise with SharePoint Online Connection set up

Certificate

Certificates enable your application to authenticate independently, elminating the need for user interaction during runtime. As a confidential client application, Hire2Retire will utilize these certificates to authenticate itself for automated tasks.

Follow the steps below to upload the certificate:

  • Download the certificate from the Hire2Retire connection UI.
  • In your registered application, select Certificates & secrets > Certificates > Upload certificate
  • Upload the certificate.

Upload Certificate

Figure 5. Upload Certificate