Typically, emails are sent and received using SMTP. With the addition of Office 365 to Infiniworx, which uses OAuth2 to send and receive emails, you must authenticate the OAuth2 application prior to using the OAuth2 email tools. This application must be registered in Azure.
To register the application in Azure:
- Open a browser and navigate to the following URL: http://portal.azure.com.
- Login to Azure using your Office 365 account information.
-
Click View from the Manage Azure Active Directory option.
The Azure Active Directory screen is displayed with the Tenant Information needed for authorization.
- Click the Copy icon in the Tenant ID field.
- Paste the Tenant ID into a WordPad or Notepad document. This information will be needed when configuring the OAuth Email Tools.
-
Click App Registration from the left pane.
- In the Register an Application page, enter a name (Infiniworx, for example) for your app registration in the Name field.
- From the Supported Account Types drop-down list, select Accounts in any organizational directory (Any Azure AD directory - Multitenant) and personal Microsoft accounts (e.g. Skype, Xbox).
- Click Register.
- A page is displayed with an Application (client) ID .
- Click the Copy button in the Application ID field.
- Paste the Client ID into a WordPad or Notepad document. This information will be needed when configuring the OAuth Email Tools.
- Click View API Permissions to load the API permissions page.
- Click Add a permission.
- Click the Microsoft Graph box at the top of the screen.
- Click the Application Permissions box.
-
Add the following permissions:
-
Mail.Read
- Mail.ReadBasic
-
Mail.ReadWrite
-
Files.ReadWrite.All
-
Mail.Send
-
User.Read (this permission should be activated by default)
Note: Ensure that all permissions have 'Admin Consent' and have an Application Type of Not Delegated.The permissions should look like the following:
-
- Click Certificates & Secrets from the left pane.
- Click New Client Secret.
- From the Add a Client Secret screen, select Never from the expiration options, and enter a description.
- Click Add to return back to the Certificates and Secrets page. The Client Secret is displayed.
- Click the Copy button in the Client Secret field.
-
Paste the Client Secret into a WordPad or Notepad document. This information will be needed when configuring the OAuth Email Tools.
Note: Do not copy the Secret ID. Copy the Secret Value from the Value column.
- Once the Azure registration is completed, an Office 365 administrator must access the API permissions, and select Grant admin consent for <organization name>(the organization name varies depending on your organization name).