Skip to main content

RDB eMail using Modern Authentication - Office 365 configuration

What do I need to do for the Office 365 configuration? 

Written by Terence Cassidy
Updated this week

Microsoft made changes in October 2022, meaning that everyone who uses the older more basic connectivity and setup loses that functionality unless you reset it up as per this guide.

Office 365 configuration

To enable eMail Sending to access company email accounts using Modern Authentication, follow the steps below.

You need to follow these steps when you're setting up a new RDB/O365 Tenant or when you're migrating an existing Tenant that used Basic Authentication.

Note: At the end of the configuration steps, you should have three values written down: an Application (client) ID, a Directory (tenant) ID and a Client secret value.

If you set up a new RDB or O365 tenant or migrate an existing tenant used in Basic Authentication:

  1. Log into the Azure Portal with an administrator account.

  2. In Azure Active Directory, click View.

  3. Click App Registrations in the left-hand menu.

  4. Click + New Registration.

  5. For the name, enter RDB, then select Accounts in any organizational directory (Any Azure AD directory – Multitenant).

  6. Click Register and make a note of the Application (client) ID and the Directory (tenant) ID.

  7. Click Manifest in the left-hand menu.

  8. Find the RequiredResourceAccess property. This will look something like this:

or more likely the array (within the square brackets) will already contain some values and look like this

  1. Add the following additional JSON text to the requiredResourceAccess array: 

{
"resourceAppId":"00000002-0000-0ff1-ce00-000000000000",
"resourceAccess":[
{
"id":"dc890d15-9560-4a4c-9b7f-a736ec74ec40", "type":"Role" 
} 
] 
}


If the requiredResourceAccess array already contains a value, add the new JSON text above to what is already there, separated by a comma. Your final requiredResourceAccess property should look like this:

  1. Click Save.

  2. Click Certificates & Secrets in the left-hand menu.

  3. Click Client secrets.

  4. Click + New Client Secret.

  5. Enter a description of Exchange Sync.

  6. Set the Expires value to 24 months.

  7. Make a note of the expiry date and diarise this so you can make sure to create a new one and avoid disruption of email sending for your business.

  8. Click Add.

  9. Write down the client secret value (not the Secret ID).

📌 Note: This will not be visible again if you return to this screen, so it’s important to make a note now (if you don’t you will just have to delete the existing client secret and add a new one).

  1. Click API Permissions in the left-hand menu

  2. Set the permissions as follows :

RDB feature

Microsoft permission

Send Email

If these permissions are missing:

  1. Click + Add Permission.

  2. Select Microsoft Graph.

  3. Select Application Permissions.

  4. Find Mail.

  5. Select: Mail.ReadWrite and Mail.Send. (Make sure "Admin consent required" is "Yes")

  6. Click Add permissions.

  • Click Grant admin consent for [your company name].

You should now have a note of three values: An Application (client) ID, a Directory (tenant) ID and a Client secret value.

You should also have a note of the secret expiry date to diarise when to renew it.

Now configure RDB

Related Articles
2 Factor Authentication (2FA) for Office 365
Send emails using Office 365
Configuration for Modern Authentication
Sending eMails using Modern Authentication
Users are unable to email through RDB and / or Outlook when using Microsoft office 365
Did this answer your question?