0 ×

Microsoft Authentication

Microsoft authentication extension for KNIME Workbench version 4.3.1.v202101221622

This node provides authentication to access Microsoft Azure and Office 365 cloud services.

It supports these authentication modes:

  • Interactive authentication: Performs an interactive, web browser based login by by clicking on Login in the node dialog. In the browser window that pops up, you may be asked to consent to the requested level of access The login results in a token being stored in a configurable location. The token will be valid for a certain amount of time that is defined by your Azure AD settings.
  • Username/password authentication: Performs a non-interactive login to obtain a fresh token every time the node executes. Since this login is non-interactive and you get a fresh token every time, this mode is well-suited for workflows on KNIME Server. However, it also has some limitations: First, you cannot to consent to the requested level of access, hence consent must be given beforehand, e.g. during a previous interactive login, or by an Azure AD directory admin. Second, accounts that require multi-factor authentication (MFA) will not work.
  • Shared key authentication (Azure Storage only): Specific to Azure Blob Storage. Performs authentication using an Azure storage account and its secret key.
  • Shared access signature (SAS) authentication (Azure Storage only): Specific to Azure Blob Storage. Performs authentication using shared access signature (SAS). For more details on shared access signatures see the Azure storage documentation.

Options

Interactive authentication

Login
Click Login to open a browser window, where you can login with your Microsoft identity and, if necessary, consent to the requested access level (see below). The login results in a token being stored in a configurable location (see below).
Token storage
Allows to define where the token obtained during login gets stored:
  • Memory: The token is temporarily stored in-memory. The token will be removed once the workflow is closed.
  • File: Allows to specify a file where the token will be written to (in encrypted form) upon login, and read from when the node is executed. This allows the same token to be used by nodes in different workflows. Note that the file is (over)written every time you successfully login.
  • Node: The token is persistently stored (in encrypted form) in the settings of this node and will be saved with the workflow.
Clear selected
Clears the token from the currently selected storage. Please note that when File is selected as storage, then the specified file will be deleted.
Clear all
Clears the token from all selected storages. Please note that any file specified in the File storage option will be deleted.
Request access to
Allows to define which level of access to Microsoft Office 365 cloud services should be requested during login.

Username/password authentication

Username
Provide the username of your Microsoft identity (typically an email address).
Password
Provide the password of your Microsoft identity. Warning: The password will be stored in weakly encrypted form as part of the node settings in the workflow.
Credentials flow variable
Allows to choose a credentials flow variable that provides the username and password to login with.
Request access to
Allows to define which level of access to Microsoft Office 365 cloud services should be requested during login.

Shared key authentication (Azure Storage only)

Account
Azure Storage account name.
Secret Key
The secret key. Warning: The secret key will be stored in weakly encrypted form as part of the node settings in the workflow.
Credentials flow variable
Allows to choose a credentials flow variable that provides the account and the secret key (as the username and password respectively) to login with.

Shared access signature (SAS) authentication (Azure Storage only)

Blob service SAS URL
URL that provides shared access signature (SAS) access to Azure Blob Storage. Warning: The secret key will be stored in weakly encrypted form as part of the node settings in the workflow.

Example URL: https://myaccount.blob.core.windows.net/?sv=2019-02-02&st=...

Credentials flow variable
Allows to choose a credentials flow variable that provides the Blob service SAS URL as the password field.

Output Ports

Icon
A Microsoft Office 365 credential that uses the logged in Microsoft identity.

Best Friends (Incoming)

Best Friends (Outgoing)

Workflows

Installation

To use this node in KNIME, install KNIME Office 365 Connectors from the following update site:

KNIME 4.3

A zipped version of the software site can be downloaded here.

You don't know what to do with this link? Read our NodePit Product and Node Installation Guide that explains you in detail how to install nodes to your KNIME Analytics Platform.

Wait a sec! You want to explore and install nodes even faster? We highly recommend our NodePit for KNIME extension for your KNIME Analytics Platform. Browse NodePit from within KNIME, install nodes with just one click and share your workflows with NodePit Space.

Developers

You want to see the source code for this node? Click the following button and we’ll use our super-powers to find it for you.