Set up OAuth 2.0 using Control Room managed

Create an application in the Microsoft Azure Console and retrieve the OAuth 2.0 parameters to configure OAuth connection in the Control Room.

Prerequisites

A Control Room administrator or a user who has the required set of permissions (or role) can setup OAuth 2.0 connection.

Procedure

  1. Log in to the Microsoft Azure portal.
    Azure portal login page
    Note: Enter your complete email address including the domain (for example: abc@domain.com).
  2. On the Home page, click View under the Manage Azure Active Directory option.
  3. On the Overview page, select App registrations from the Manage panel and then click + New registration.
  4. On the Register an application page, enter the appropriate name in the Name field, then select the supported account type and configure the Redirect URI.
    1. For the Redirect URI platform, select the Web option.
    2. Provide the callback URI from OAuth connection.
    3. Click Register to complete the initial app registration.
  5. To set the API permission for the application to access the API resources, select the API permissions option under the Manage panel.
  6. Click + Add a permission > Microsoft APIs and select Microsoft Graph.
    Grant API permission screen
  7. Select Delegated permissions and add the required permissions.
    The permissions can vary based on your requirement. For example, email, offline_access, and so on.
  8. After an application is registered, the application is assigned with the Client ID and Tenant ID. You can click Copy to clipboard to copy the tenant and the client IDs.
    Copy the Client ID, Tenant ID and Redirect URL
    You can use the Client ID, Tenant ID, and Client secret to establish a connection with a Microsoft 365 Outlook server.
    Note: The Microsoft 365 Outlook package can use the centrally managed OAuth 2.0 token which supports certificate-based authentication. See, OAuth support for Microsoft Entra using Private Key JWT.
After you have established the OAuth 2.0 connection and parameters, administrator or a user who has the required set of permissions (or role) can configure the OAuth 2.0 connection in the Control Room, which is used in various Microsoft 365 packages.

For more information, see Configure OAuth 2.0 connection in Control Room.