Configuring Modern Authentication for Office 365

emailtracking exchange office_365 service_account

How to set up Modern Authentication for Office 365

Pre-Requisites

User must have access to Azure Active Directory with Admin permissions.
Under Enterprise Applications in Azure AD, Office 365 Exchange online must be present as an Enterprise Application.
User must be a system administrator in Gold-Vision in order to add the Azure Registered Application.
Calendar settings should be set to Office 365 or the recommended version of EWS.
User Impersonation must be enabled. This is set against the Mail Tracking settings page and Calendar Synchronization settings page with the field name ‘Disable EWS Impersonate’ (field must be unticked).

Configure Azure Application

1. Navigate to https://www.office.com/?auth=2&home=1

2. Login using an Admin Account that has access to Azure Active Directory.

3. Select the left-hand menu and select the Admin section.

4. Select ‘Show All’ from the left-hand menu. Then under ‘Admin Centers’ select ‘Azure Active Directory’

5. Against the new tab (Admin center).

6. Select Azure Active Directory again from the left-hand menu – this can be accessed directly here – https://aad.portal.azure.com/

7. Select App Registrations  (directly accessible here – https://aad.portal.azure.com/#view/Microsoft_AAD_IAM/ActiveDirectoryMenuBlade/~/RegisteredApps)

8. Select New Registration

9. Enter an Appropriate name e.g. ‘Gold-Vision Exchange Access’ then select ‘Register’. In this case we would select ‘Accounts in this organizational directory only’ as the supported account types.

10. Against the new registration select ‘API Permissions’

11. Select ‘Add a permission’.

Select ‘APIs my organisation uses’
Select ‘Office 365 Exchange online’ (Search may be required)
Select ‘Application permissions’
Ensure that ‘full_access_as_app’ is checked under the permissions area.
Finally select Add permissions

12. Then select ‘ Grant admin consent for yourdomain‘

Tip

Tip: This button is next to the Add a permission button which against the main API-Permissions page.

13. Select Certificates and Secrets.

14. Select ‘New client secret’

Enter a suitable description.
Set the expiry to whatever is appropriate.

15. Select Add.

Save the Client Secret Value in a password manager/Secure Note.

Note

IMPORTANT: This password will only be retrievable once.

IMPORTANT: Gold-Vision will need the Client Secret Value, not the ID

16. Select the overview option from the menu.

17. Make note of the ‘tenant id’ (Directory), and ‘client id’ (Application).

Cookie	Duration	Description
cookielawinfo-checbox-analytics	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Analytics".
cookielawinfo-checbox-functional	11 months	The cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Functional".
cookielawinfo-checbox-others	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Other.
cookielawinfo-checkbox-advertisement	1 year	The cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Advertisement".
cookielawinfo-checkbox-necessary	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Necessary".
cookielawinfo-checkbox-performance	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Performance".
viewed_cookie_policy	11 months	The cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data.

Cookie	Duration	Description
_ga	2 years	This cookie is installed by Google Analytics. The cookie is used to calculate visitor, session, campaign data and keep track of site usage for the site's analytics report. The cookies store information anonymously and assign a randomly generated number to identify unique visitors.
_gid	1 day	This cookie is installed by Google Analytics. The cookie is used to store information of how visitors use a website and helps in creating an analytics report of how the website is doing. The data collected including the number visitors, the source where they have come from, and the pages visted in an anonymous form.

Cookie	Duration	Description
IDE	1 year 24 days	Used by Google DoubleClick and stores information about how the user uses the website and any other advertisement before visiting the website. This is used to present users with ads that are relevant to them according to the user profile.
test_cookie	15 minutes	This cookie is set by doubleclick.net. The purpose of the cookie is to determine if the user's browser supports cookies.
VISITOR_INFO1_LIVE	5 months 27 days	This cookie is set by Youtube. Used to track the information of the embedded YouTube videos on a website.

Cookie	Duration	Description
_gat_gtag_UA_41710420_4	1 minute	No description
CONSENT	16 years 7 months 22 days 11 hours 30 minutes	No description

General Settings

Configuring Modern Authentication for Office 365

How to set up Modern Authentication for Office 365

Pre-Requisites

Configure Azure Application

Tip

Note

Related articles

Was this article helpful?

General Settings

Configuring Modern Authentication for Office 365

How to set up Modern Authentication for Office 365

Pre-Requisites

Configure Azure Application

Tip

Note

Related articles

Was this article helpful?

Share this article