Appalix
Sign inGet started free
Resources/Connect SharePoint to Appalix
Tutorial10 min read · Pro plan and above

How to Connect SharePoint to Appalix

Index documents from Microsoft SharePoint sites so your AI bot can answer questions from your organisation's intranet content, policies, and wikis. Appalix uses the Microsoft Graph API — you need a token, the file URL, and your SharePoint Site ID.

What you'll need

  • An Appalix account on the Pro plan or above
  • A Microsoft 365 work or school account with access to the SharePoint site
  • A configured bot in Appalix with RAG enabled

Step 1 — Copy the SharePoint file URL

  1. Open the SharePoint site and navigate to the document library.
  2. Click the file to open it, then copy the URL from the browser address bar. It looks like:
https://yourcompany.sharepoint.com/sites/MySite/Shared%20Documents/policy.docx

Alternatively, right-click the file → Share → Copy link to get a shareable URL.

Step 2 — Generate a Microsoft Graph access token

Graph Explorer only shows permissions relevant to the active query. You need to run a SharePoint query first so that Files.Read.All and Sites.Read.All appear.

  1. Go to developer.microsoft.com/graph/graph-explorer.
  2. Click Sign in to Graph Explorer using your Microsoft 365 work or school account.
  3. In the request URL bar, enter:
    https://graph.microsoft.com/v1.0/sites?search=*
    Click Run query. It will show an error — that's expected.
  4. A blue Modify permissions banner will appear (or click the Modify permissions tab). You will now see the required permissions in the list. Click Consent next to each:
    • Files.Read.All — read files across sites
    • Sites.Read.All — read SharePoint site data
  5. Run the query again — it should return a list of SharePoint sites.
  6. Copy your access token — there are two ways depending on the Graph Explorer version you see:
    • Tab method (most common): Look at the response panel below the URL bar. Click the Access token tab (next to “Response preview” and “Response headers”). The full token is shown — click Copy.
    • Profile icon method: At the very top-right of the page, click your profile picture or initials circle (next to the bell icon). A dropdown appears — click Access token. The token is shown in a pop-up — click Copy.
    The token is a long string. Work/school (Azure AD) accounts get a JWT starting with eyJ0…; personal Microsoft accounts (Outlook/Live) get a token starting with EwB…. Both are correct.
Common mistake — do not copy the browser URL! After highlighting the token text on the page, some browsers (Chrome, Edge) let you “copy link to highlight”. If you accidentally copy the address bar you'll get a URL like https://developer.microsoft.com/…#:~:text=eyJ0… — that is not your token. Always use the Copy button inside Graph Explorer (the button next to the token text), not the browser address bar.
Note: Graph Explorer tokens expire after ~1 hour. For production, register an app in Azure AD and use the client credentials flow for long-lived tokens.

Step 3 — Find your SharePoint Site ID

Appalix needs the Site ID to locate your file within the Graph API.

  1. In Graph Explorer, make sure you're signed in, then run this request:
GET https://graph.microsoft.com/v1.0/sites?search=your-site-name
  1. Find your site in the response and copy the id field. It looks like:
yourcompany.sharepoint.com,aaaaaaaa-bbbb-cccc-dddd-eeeeeeeeeeee,ffffffff-gggg-hhhh-iiii-jjjjjjjjjjjj

You can also get the site ID directly by appending /_api/site/id to your SharePoint site URL in a browser (requires login).

Step 4 — Add the source in Appalix

  1. In Appalix, go to Sources → Add source and select SharePoint.
  2. Enter a Source name (e.g. HR Policies).
  3. Paste the SharePoint file URL from Step 1.
  4. Paste the Microsoft Graph access token from Step 2 (starts with eyJ0… or EwB…).
  5. Paste the SharePoint Site ID from Step 3.
  6. Click Add & index source.

Step 5 — Verify the source is ready

  1. Go to Sources — the SharePoint source will show Processing while indexing.
  2. Once it shows Ready, your bot can answer questions from that document.
  3. Test it in the Playground — ask a question that's covered in the document.

Tips & best practices

  • One file per source — add each SharePoint document as a separate source for clean, independent re-syncing.
  • Re-sync after edits — click Re-sync on the source in Appalix whenever the document changes.
  • IT admin approval — in some Microsoft 365 tenants, admin consent is required for Graph API permissions. Check with your IT admin if Graph Explorer shows permission errors.
  • Production tokens — register an Azure AD application with Sites.Read.All app permission and use certificate-based auth for durable indexing.

🏢

Bring your SharePoint content to life

Index your organisation's policies, wikis, and intranet documents so your AI bot can answer questions from them instantly.

Go to Sources →
← Back to ResourcesView all features →
📬

Stay ahead of the curve

Get new guides, case studies, and product updates delivered to your inbox every two weeks.

No spam. Unsubscribe any time.