Configuring Microsoft Graph authentication with client certificate in Omnichannel Administration Utility

Last Updated : Mar 15, 2021 |

Procedure

  1. Start Omnichannel Administration Utility.
  2. Navigate to E-mail > Authentication.

    The application displays Mailboxes Authentication Settings page.

  3. Click Add.
  4. In the Name field, type a name for the attribute.
  5. In the Authentication Type field, select OAuth2.0.
  6. In the OAuth2.0 Grant Type field, select Client Credentials with certificate.
  7. In the Grant Type Configuration area, do the following:
    1. In the Token URI field, enter the token URI https://login.microsoftonline.com/{tenant id}/oauth2/v2.0/token.

    Tenant id must be entered from the application overview page of the Microsoft Azure portal.

    For example, https://login.microsoftonline.com/efed5fa7-d22d-456e-ab23-7c6ee6192dbd/oauth2/v2.0/token

    1. In the Client ID field, type the ID from the application Overview section of the Microsoft Azure portal.
    2. In the GUID field, type the value of the keyId from the Manifest section of the Microsoft Azure portal.
    3. In the Scopes field, enter the scope for Microsoft Graph from https://graph.microsoft.com/.default.
    4. In the Key Store (.p12) field, click Load file to upload the file.
      Note:

      To avoid errors, you can verify the key in KeyStore explorer https://keystore-explorer.org/.

  8. Click Save.