Sticky Tutorial

All you need in order to move to Microsoft 365 Exchange OAuth 2.0 protocol.

  • 13 October 2022
  • 11 replies
  • 2935 views

Two years ago, Microsoft announced that it will no longer support basic authentication protocols (SMTP, IMAP, POP). The time has come when you need to move to a more secure and updated protocol - OAuth 2.0. 

 

Setup of the new email integration is simple: 

  1. In SysAid, go to: Settings > Integration > Email

  2. Click the Create New button, and follow the instructions in this Microsoft 365 Email Integration with OAuth 2.0 Guide. The permissions required on MS side: 

Permissions required on Microsoft
​​​​
  1. Test and verify the new integration: Send manual email, reply from tickets and take actions that trigger automatic notification.

 

To disable the SMTP integration [see screenshot below]:

  1. In SysAid, go to: Settings > Integration [1] > Email [2].

  2. Choose the SMTP integration list item and uncheck:

    1. Select the Outgoing Email tab [3] 

    2. Uncheck  Enable outgoing email 

    3. Click Apply [5].

    4. Select the Incoming Email tab [4]

    5. Uncheck Enable incoming email

    6. Click Apply [5]. 

 

A few important notes: 

  1. This update is relevant for cloud and On-premises accounts. 

  2. For On-premises, Microsoft 365 Exchange OAuth 2.0 is supported from version 20.4.74 and up. 

  3. There is a workaround available to provide you with a short time extension if needed, read more about it here. 

 

If you have any questions please ask away in the comments!

Regards, 

 

CX5iNx5b42lQLX_V4AGEmmRmpxE6ECic0_5tbLIQcKtQWaww7cK4X4OiiuuCNwZYd_rsFACZs1Z-cXV_Ga5PYtRq4FNX0ZqyDdT69iQ8fTiVX4Zb8Dmggb18gpMbY_y92GdJT7m9lWjxp8LPdXFjru6MYTbOul4UEzZNaSlnZD8OGDZE2MSqMcFdiA


11 replies

Userlevel 4
Badge

All downloads links for relevant On-Premises versions can be found here: 

https://helpdesk.sysaid.com/FAQTree.jsp?id=858

*Requires login to our Customer Portal (SSP)

**Login is the same as the one you set up for our community :) 

Userlevel 4
Badge

Important

We recommend that you limit the application's access to specific mailboxes by creating an application access policy. For more information from Microsoft, see here.

When setting this up, I get this error message:

 

Test incoming email failed

getRequest: Failed to call getRequest: response code: 403, HTTP status code: 403, reason: Forbidden {"error":{"code":"ErrorAccessDenied","message":"Access is denied. Check credentials and try again."}}

 

Any idea what might be wrong?

Kind Regards,

Rudi

Userlevel 1

When setting this up, I get this error message:

 

Test incoming email failed

getRequest: Failed to call getRequest: response code: 403, HTTP status code: 403, reason: Forbidden {"error":{"code":"ErrorAccessDenied","message":"Access is denied. Check credentials and try again."}}

 

Any idea what might be wrong?

Kind Regards,

Rudi

We are receiving the same error.  Interested in any suggestions.

Userlevel 4
Badge

@Crissmiller @JSR ICT double check you gave all the relevant permissions (see screenshot above) as well as 3rd party apps access.  If still not figured out share some logs for review or reach out to our Customer Care team via live chat or open a ticket on our Customer Portal for further support. 

Let us know how it goes!

 

Userlevel 1

@Crissmiller @JSR ICT double check you gave all the relevant permissions (see screenshot above) as well as 3rd party apps access.  If still not figured out share some logs for review or reach out to our Customer Care team via live chat or open a ticket on our Customer Portal for further support. 

Let us know how it goes!

 

Thank you.  I submitted a ticket and the issue has been resolved.  It was a permissions issue.

Userlevel 4
Badge

@Crissmiller amazing! what permissions were you missing? 

 

Userlevel 1

@Maayan Karstaedt, when our API permissions were set it looks like user.read was omitted.  They also had everything set as Delegated rather than Application, instead of just the user.read permission.

Thanks for the follow up. 

When will sysaid remove support for SMTP in the on premise version?

Userlevel 4
Badge

Hi @steven.brooks ,

As the deprecation was on Microsoft side it is applicable to on-prem and cloud now. We higly reccomend you move to OAuth 2.0 protocol now, Microsoft 365 Exchange OAuth 2.0 is supported from version 20.4.74 and up. 

 

 

Hi @steven.brooks ,

As the deprecation was on Microsoft side it is applicable to on-prem and cloud now. We higly reccomend you move to OAuth 2.0 protocol now, Microsoft 365 Exchange OAuth 2.0 is supported from version 20.4.74 and up. 

 

 

Hi @Maayan Karstaedt , i understand however when will the smtp option be removed? Will this be in the next release of sysaid?

Reply