Custom SMTP

To use OAuth2.0 authentication to access the SMTP server using the Microsoft Graph API, the Ultimo application must be registered with Azure Active Directory and granted specific permissions.

Applicable Ultimo version: Rolling Release (Azure cloud)

Implementation steps

1. Register application with Azure Active Directory

  1. Go to the Azure portal and sign in. This account must be in the same directory as the account that will be used to access Exchange Online.

  2. Select Azure Active Directory and then select App Registrations in the left side menu.

  3. Click on New Registration and use the following values:

    1. Enter a Name for the application

    2. For Supported account types choose Accounts in this organizational directory only

    3. For Redirect URI choose Web and enter the following value based on your situation (note: the URI is case sensitive):

      {UltimoEnvironment}/OAuth2Callback where {UltimoEnvironment} is the domain where Ultimo is hosted. Example: https://customer.ultimo.net/OAuth2Callback

  4. Click Register. Then copy the value of the Application (client) ID and the Directory (tenant) ID and save it. This will be needed later.

  5. Select Certificates & secrets in the left side menu and click New client secret. Enter a description and click Add.

  6. Copy the value of the added client secret and save it.

  7. Select API permissions in the left menu and select Add permission.

    1. select Microsoft Graph.

    2. Select Delegated permissions and then choose SMTP.Send under SMTP.

    3. Select Add permissions.

2. Create credential in Ultimo

The application that was registered in the previous steps can be used to create a credential in Ultimo.

  1. Go to the UCTool and select Credentials under Authorisation.

  2. Click on the plus icon to create a new credential and use the following values:

    1. Enter an Id and Description for the credential

    2. For Grant type choose Authorization Code

    3. For Authorization URL enter https://login.microsoftonline.com/{tenant-id}/oauth2/v2.0/authorize?prompt=select_account where {tenant-id} should be replaced with the Directory (tenant) ID that was copied in the previous steps

    4. For Access token URL enter https://login.microsoftonline.com/{tenant-id}/oauth2/v2.0/token where {tenant-id} should be replaced with the Directory (tenant) ID that was copied in the previous steps

    5. For Client Id enter the value of the Application (client) ID that was copied in the previous steps

    6. For Client secret enter the value of the added client secret that was copied in the previous steps

    7. For Scope enter the following value:

      https://outlook.office.com/SMTP.Send offline_access

  3. Click on the save icon.

  4. Click on the key icon in the toolbar to get an access token.

  5. You will be redirected to the Microsoft login screen. Sign in with the account that will be used to authenticate with Exchange Online.

  6. You will be redirected back to Ultimo.

PreviousEmail importNextLDAP

Last updated