You can set up email integration with the OAuth 2.0 protocol with Microsoft 365 or Google. The instructions below can be applied to incoming or outgoing email integration or both.
Please note:
We recommend that you limit the application's access to specific mailboxes by creating an application access policy. For more information, see Microsoft Ignite.
Setting up outgoing/incoming email with the OAuth 2.0 protocol with Microsoft 365
In SysAid, go to Settings > Integrations > Email.
Click +New.
Go to the Incoming Email tab,
From the Protocol drop-down, select OAuth 2.0.
From the Service provider drop-down, select Microsoft 365.
Register your application in Entra:
In your Microsoft 365 account, navigate to Active Directory > App registrations.
Click New registration.
Enter a name for your application.
In the supported account types, select the single tenant option.
(Optional) Select a platform configuration.
Click Register.
Client secret:
In App registrations, navigate to Certificates & secrets.
Click New Client secret.
Enter a description.
In the Expires area, select 24 Months.
Click Add.
Copy the generated secret from the Value column.
Back in the SysAid email integration form, paste the secret in the Client secret field.
Set up API permission:
Back in Entra, navigate to API permissions and click Add a permission.
Choose Microsoft Graph.
Click Delegated Permissions.
Check the User.Read permission.
Click Add Permissions.
Click Application Permissions.
Check the following permissions:
Calendars.ReadWrite
Mail.ReadWrite
Mail.Send
User.Read.All
Click Add Permissions.
Click Application Permissions.
Click Grant admin consent for <domain name>.
Click Yes.
Copy the Tenant ID and Client ID:
In Azure Active Directory, navigate to App registrations and select the app you just set up.
Copy the Application (client) ID and paste it into the Client ID field in the SysAid email integration form.
Copy the Directory (tenant) ID and paste it into the Tenant ID field in the SysAid email integration form.
In your email inbox settings, navigate to General > Language and Time and ensure that the value of the Current Time Zone field reflects the appropriate time zone for your account.
Follow the instructions in the relevant links below to fill out the rest of the email form. Be sure that the inbox that you set up for incoming email integration is dedicated specifically for incoming email integration with SysAid and not used for any other purposes.
I am running a few minutes late; my previous meeting is running over.Please note:
All emails sent to the integrated email address create a service record and are deleted shortly after. In Microsoft 365 OAuth 2.0, due to Microsoft policies, such emails are moved to the Recoverable Items folder, instead of the Deleted folder (as expected). This is in accordance with Microsoft 365 design; more details can be found in Microsoft Ignite.
To easily locate your incoming (deleted) emails, simply click the Recoverable Items link (at the top of the Deleted folder) and find all the relevant emails (which are kept there for 30 days, same as in the deleted folder).
Another option to bypass this behavior is to define a dedicated folder for copies of all incoming emails. To do so, go to Settings > Integration > Email > Incoming Email tab, and fill in the Send a copy of the incoming emails to field (available for Enterprise editions only).
To learn more, see Incoming Email Integration Form.