App registration for EWS (Exchange Web Services)

To enable OAuth 2.0 authentication, Synchronizer must be registered as a Microsoft Azure app for the tenant.

To complete the app registration:

  1. Use the browser to navigate to the Microsoft Azure portal at https://portal.azure.com/.
  2. Select App registrations and click + New registration.
  3. Specify this information:
    Name
    Specify a suitable user-facing display name, such as LN Synchronizer.
    Supported account type
    Select Accounts in this organizational directory only.
  4. Under Certificates & secrets, create a client secret and copy the value for later use.
  5. Under API permissions, add this application permission for the Exchange API: full_access_as_app
  6. Under API permissions, ensure that the full_access_as_app permission is granted for the tenant. This requires admin consent.
After finishing these steps, navigate to the app’s overview page and take note of Directory (tenant) ID and Application (client) ID. These items, and the client secret that was obtained under step 4, are required when you configure Exchange Synchronizer in LN.