To enable OAuth2 implementation, perform
this task to create the service settings for viewLinc Enterprise Server in Azure for your
Microsoft 365 account.
-
Navigate to the Azure Active Directory.
-
Create the application as follows:
-
Under the Add drop-down, select App Registration. Name the new application viewlinc-es.
-
Select the supported account types associated with your organization. The default
will be Single tenant.
| Do not add a Redirect URI.
|
-
Select Register to complete the registration.
-
Create a client secret as follows:
-
Under Manage, select Certificates & secrets.
-
Select New client secret and add a description.
| Your secret will have an expiry
date. Set a reminder to renew your secret for when it expires. Once your secret
expires viewLinc email notifications will stop working. |
-
Copy your Secret Value after you have created it.
| Your secret will only be visible right after you create it. You may want to
save it to a notepad as you will need to enter it when you configure viewLinc in the
subsequent task. |
-
Add API permissions as follows:
-
Under Manage, select API
permissions.
-
Select Add
a permission and select Microsoft
Graph.
-
Select Application permissions, then search for and add Mail.ReadWrite and Mail.Send.
| Write access is required to mark
emails as read. |
| Because this
step allows application permission to access all mailboxes in your organization, you
should limit application access to a specific mailbox only. Consult the following
topic for instructions on how to create that mailbox and an appropriate application
access policy: https://learn.microsoft.com/en-us/graph/auth-limit-mailbox-access |
-
Ensure you select Grant admin consent, found next to Add
a permission, for the selected permissions. Select Yes.