All Collections
System Settings, configurations and administration
Account setup
Configure outgoing mail server
Creating an Azure App and Configuring API Permissions for Microsoft OAuth
Creating an Azure App and Configuring API Permissions for Microsoft OAuth

Effortlessly configure API permissions for Microsoft OAuth with Azure app creation. Streamline access control for seamless authentication.

Updated over a week ago

To configure the custom Outgoing mail service with Microsoft OAuth in Yeeflow, you need to create a Microsoft Azure App and configure the necessary API permissions.

This article will guide you through the process of creating an Azure App, adding the required API permission, and generating a client secret. The information obtained during this process will be used in the next article to configure the Microsoft OAuth type Outgoing mail service configuration.

Step 1: Creating an Azure App:

Sign in to the Azure portal (portal.azure.com) using your Azure administrator account. Navigate to the Azure Active Directory (AD) service.

In the Azure AD portal, select "App registrations" from the left-hand menu. Click on the "New registration" button to create a new app registration.

Provide a meaningful name for your app, and choose the appropriate account type (single-tenant or multi-tenant) based on your requirements. In the Redirect URI section, leave it empty.

Click on the "Register" button to create the app.

Take note of:

  1. The Application (client) ID and

  2. Directory (tenant) ID,

as you will need them when configure the outgoing email service in Yeeflow.

Step 2: Configuring API Permissions:

In the app's Overview page, select "API permissions" from the left-hand menu. Then, under the Configured permissions page, click on the "Add a permission" button.

In the Request API permissions fly-out, click to select Microsoft Graph API.

When asked to choose the type of permission required by the application, click on Application permissions.

In the search box, type in Mail.Send to search for it. In the result, click to check the Mail.Send permission. Lastly, click on Add permissions.

You’ll notice that the permission status is “Not granted for <organization name>.” At this point, you or a Global admin must first give consent for the application. To grant permission, click on the Grant admin consent for <organization> button.

The API permission status then changes to “Granted for <organization name>”.

Step 3: Creating a Client Secret:

In the app's Overview page, select "Certificates & secrets" from the left-hand menu. Under the "Client secrets" section, click on the "New client secret" button.

Enter a description for the secret, choose an expiration period, and click on the "Add" button.

Make sure to copy and securely store the generated client secret value. This secret value will be usedwhen configure the outgoing email service in Yeeflow.

By following the steps outlined in this article, you can create an Azure App, configure the required API permissions by adding the "Mail.Send" permission, and generate a client secret. These steps prepare you for the next article, where you will use the Application (client) ID, Directory (tenant) ID, and the value of the generated client secret to configure the Microsoft OAuth type Outgoing mail service configuration in Yeeflow.



Related Articles
Configuring Microsoft OAuth Type Outgoing Mail Server
Set Up Microsoft 365 User Sync Services
Configuring SSO with OIDC (OAuth 2.0)
Configuring SSO with Azure B2C
Did this answer your question?