N O T I C E
MSPbots WIKI is moving to a new home at support.mspbots.ai to give you the best experience in browsing our Knowledge Base resources and addressing your concerns. Click here
for more info!
Page History
...
Table of Contents | ||
---|---|---|
|
Background information
...
OAuth (Open Authorization) 2.0 is the modern standard to allow a website or application to access resources hosted by other web apps on behalf of a user. It adds security by providing consented access and restricting client actions performed on resources without sharing the user's credentials.
...
If you prefer using only the basic authentication to modify the Outgoing Mail settings, refer to the article How to Configure the Outgoing Mail Using Basic Authentication.
Prerequisites for editing the Outgoing Mail settings
...
You must have the following to perform the procedure below:
- Admin permissions
- Inclusion in the Azure Active Directory (AAD)
- Outlook 365 license
- Application and developer roles for configuring the AAD
Gathering the MS OAuth 2.0 credentials for authorization
...
Follow these steps to generate the required information:
Prepare the redirect uniform resource identifier (URI) which is https://app.mspbots.ai/web/um/smtp/redirect. Once the authorization is successful, Microsoft will use this URI to notify MSPbots about the authentication result.Anchor hostname hostname You can find this information with the following steps:
Go to Settings > System > Outgoing Mail.
Click Addv and select OAuth2.
When the Add window opens, go to the Redirect URI field and copy the given URL.
- Sign in to the Microsoft Azure portal and secure the credentials needed for the OAuth 2.0 authorization.
Create a new app registration.
On the Microsoft Azure homepage, click App registrations.
When the App registrations page opens, click the +New registration tab.
In the Register an application form:
Enter a Name for your application.
Select Account in this organizational directory only from the options for Supported account types.
Enter the redirect URI from Step 1.
Click Register.
The Application (client) ID will be shown after your registration is done. Take note of this ID.
Next, go to Certificates & secrets in the sidebar menu then click +New client secret on the right.
On the Add a client secret window:Anchor idandsecret idandsecret Add a description.
Select an expiry date from the Expires dropdown menu.
Note Before the secret expires you must create a new secret and apply it to the MSPbots Outgoing Mail settings.
Click the copy icon to copy the generated Value and Secret ID. You will use these values later when configuring OAuth 2.0 in the mail settings.
Next, go back to the Overview and click the Endpoints tab.
Copy the OAuth 2.0 authorization endpoint (v2) and the OAuth 2.0 token endpoint (v2) to your local desktop. You will also use these values for creating the OAuth 2.0 credential in the mail settings.Anchor authandtokenurl authandtokenurl Set API Permissions:
Navigate to API permissions on the sidebar menu and click the Add a permission button on the API Permissions page of your application.
Select the Microsoft APIs you need access to. Example: Microsoft Graph
Next, select Delegated permissions and enter SMTP.Send in the Select permissions field.
- Click the Add permissions button.
Setting up OAuth 2.0 in MSPbots
...
- Open the MSPbots app and go to Settings > System.
- Click Outgoing Mail in the upper right corner of the Settings tab.
- Click Add v and select OAuth2.
- Fill in the following fields:
- Host Name - Use the information in Step 1 of the previous section.
- Authorization URL and Token URL - Use the values from Step 3.h of the previous section.
- Redirect URI - This value is pre-filled.
- Client ID and Client Secret - et the values generated in Step 3.f of the previous section.
- Username - Enter your username.
- Reply to - Enter your preferred email.
- Signature - Input your signature.
- Click Authorize.
- When the confirmation pop-up window opens, click Continue.
- On the Microsoft login screen, enter the user password you provided in the OAuth 2.0 credential and click Sign In.
- Click Accept in the pop-up window with the requested permissions.
Verifying if the authentication is successful
...
To verify if the configuration works, refresh the mailbox list page. The mailbox status should show Verified for a successful authentication. If the status is Not Verified, repeat Step 4 onwards until the authorization is successful.
Related Topics
...
Content by Label | ||||||||||
---|---|---|---|---|---|---|---|---|---|---|
|
...