App-Registration

In order for the Reddoxx Toolbox to access the M365 mailboxes, access authorisation must first be granted.
This is done via an App Registration app and is described below.

Step 1:

  1. log in at portal.azure.com
  2. search for the "App registrations"service
  3. or select it directly if it is already listed in the list of Azure services
    Toolbox-Azure-01

Step 2:

  1. select "New registration"
  2. click on "All applications"
  3. click on "Register application"
    Toolbox-Azure-02

Step 3:

  1. Set a name for the application (e.g. Reddoxx Toolbox)
  2. click on "Register"
    Toolbox-Azure-03

Step 1:

  1. make a note of the Application ID
  2. note the Tenant ID (Directory tenant ID)
  3. click on "Add a certificate or secret"
    Toolbox-Azure-04

Step 2:

  1. select "New client secret"
  2. assign a suitable name as a description (e.g. Toolbox access)
  3. set the validity period
  4. click on Add
    Toolbox-Azure-05

Step 3:
The value and the Secret ID are now displayed in the overview.
The value (1) must be copied here (this is only displayed for a certain time, if this is not noted, a new client secret must be created)
Toolbox-Azure-06

The registered app requires some permissions, which are now configured

Step 1:

  1. click on "API permissions"
  2. select "Add a Permission"
  3. click on "Microsoft Graph"
    Toolbox-Azure-07

Step 2:

  1. click on Application Permissions and select the following permissions which are then provided with "Add Permissions":
    • Application.Read.All
    • Directory.Read.All
    • Mail.Read
    • MailboxSettings.Read
    • RoleManagement.Read.All
    • User.Read.All
      Toolbox-Azure-08

Step 3:

  1. then select "Add a permission" again
  2. search in the area "APIs my organization uses"
  3. enter the API "Office 365 Exchange Online"
  4. click on the API "Office 365 Exchange Online"
    Toolbox-Azure-09

Step 4:

  1. select "Application permissions" again
  2. select the "full_access_as_app" permission
  3. select the "Exchange.ManageAsApp" permission
  4. click on "Add permissions"
    Toolbox-Azure-10

Step 5:

  1. click on "Grant admin consent"
    Toolbox-Azure-11

  2. confirm the Grant admin constent confirmation with "Yes"
    Toolbox-Azure-12

Step 1:

  1. then log in at entra.microsoft.com
  2. search for "roles"
  3. select "Microsoft Entra roles and administrators"
    Toolbox-Azure-13

Step 2:

  1. search for "Exchange Administrator" in the list and select it
    Toolbox-Azure-14

Step 3:

  1. click on "Add assignments"
    Toolbox-Azure-15

Step 4:

  1. search for the name of the registered app (in the example here this was "Reddoxx Toolbox")
  2. select the app for the assignment
  3. confirm this with "Add"
    Toolbox-Azure-16

Now you can connect to the REDDOXX Toolbox via the APP created in this way.
You need the now known data here:

  • Tenant ID
  • Client ID
  • Client Secret