Configuring Office 365 Email

1. Prerequisites (IT Admin Collection)

Before you begin, ensure you have collected the following values from your IT or Microsoft 365 administrator:

• Tenant ID: Your organization’s Microsoft 365 directory ID.
• Client ID: The App (client) ID of the Azure/Entra App Registration.
• Client Secret: The secret value created for the app (ensure this is copied immediately upon creation).
• User Email: The mailbox address for outgoing mail (e.g., [email protected]).
• User ID: The identifier for the mailbox.

Note: We highly recommend using the mailbox user’s Object ID for long-term stability.

2. Microsoft Entra Setup (IT Admin Steps)

1. Create App Registration: In the Microsoft Entra admin center, create a new App registration.
2. Generate Secret: Create a Client secret for the application.
3. Configure Permissions: * Navigate to Microsoft Graph → Application permissions.

• Select Mail.Send.

4. Admin Consent: Click Grant admin consent for your tenant to activate permissions.

3. Security Best Practice: Restrict App Access

By default, the Mail.Send permission allows the app to send mail from any mailbox in the tenant.

Recommendation: Ask your IT admin to restrict the app to only the intended sender mailbox. This is typically achieved via an Exchange Online "Application Access Policy" (approved-mailbox scoping).

4. Configuration in Unified Dashboard

1. Navigate to Settings → Email settings → Office 365 setup (select the correct bot).
2. Input the following values:

• User Email
• Client ID
• Tenant ID
• Client Secret Key
• User ID (Object ID preferred)

3. Click Submit.

Note: Upon a successful save, the setup will become locked and fields will be disabled to prevent accidental changes.

5. Updates and Secret Rotation

If a value changes (such as an expired Client Secret) or a correction is needed:

1. Return to the Office 365 setup menu.
2. Click Reset.
3. Re-enter the updated values and click Submit.

6. Troubleshooting Common Issues