Configure the Microsoft Graph mail server

  • Published on Apr 16, 2025
  • 2 minute(s) read

Register an application in Azure Portal

  1. Log in to Azure Portal.
  2. In the Azure Portal menu, navigate to Microsoft Entra ID.

azure-portal-ms-entra-id.png

  1. In the left pane, navigate to Manage > App registrations.

AW43_azure-portal-app-registration-menu.png

  1. Click on + New registration on the top toolbar.

AW43-azure-portal-new-app-registration.png

  1. In the Register an application window that opens, configure the following:
  • In the Supported account types section select Accounts in this organizational directory only (tenant only - Single tenant). For more information about the supported account types, see Microsoft documentation.
  • In the Redirect URI (optional) section select Web and in the value field insert the FQDN of the Application Workspace Zone you want to add, with the /api/auth/token/end suffix.

Example:

https://< Virtual Host >/api/auth/token/end

  1. Click on Register on the bottom left, to complete the initial app registration.

  2. You need to generate a client secret that facilitates communication between Application Workspace and Microsoft Entra ID (Azure AD). In the newly created app registration, in the left pane, navigate to Manage > Certificates & secrets > Client secrets > New client secret.

AW43-azure-portal-app-registration-API-permissions.png

  1. Add a description and an expiration date for your client secret and then click Add. Note down your client secret after you create it because there is no way of retrieving the value after you leave this screen.

  2. You need to add permission to your app registration. With the new app open, in the left pane, navigate to Manage > API permissions and add the Mail.Send permission.

For more information about permissions, see Microsoft documentation.

  1. After you add the permission, click on the Grant admin consent for {your tenant} above the permission list. It can take up to an hour before these settings take effect in Microsoft Entra ID (Azure AD).

AW43-azure-portal-app-registration-API-permissions-grant-admin-consent.jpg

Application Workspace configuration

  1. In Application Workspace, navigate to Manage > System > Mail Settings.
  2. Click AW43_enlarge Create. The Create mail server dialog box opens.
  3. In the Type screen, select Microsoft Graph.
  4. In the Overview screen enter the desired name, description and priority. Note that when trying to send an email Application Workspace will first use the mail server that has the lowest number in the priority field. If not available, it will continue with the next server in the list that has a higher priority. After you finish inserting all necessary information, click Next.
  5. In the Settings screen, configure the following:
  6. In the Summary screen, click Finish.