Aurinko
Aurinko websiteAurinko blogAPI ReferenceContact Support
Aurinko API
Aurinko API
  • Getting started
    • What is Unified Mailbox API?
    • Getting started with Aurinko
    • Get your developer API keys
    • Adding Aurinko to Google Workspace allowlist
    • Bubble.io plugin
    • Team members and roles in applications
  • Unified APIs
    • Email API
    • Calendar API
    • Contacts API
    • Tasks API
    • Webhooks API
      • Configuring Pub/Sub for Gmail API Webhooks
    • Direct API
  • Authentication
    • OAuth Flow
      • Account OAuth Flow
      • User ОАuth Flow
      • Service Account OAuth Flow
    • Authentication scopes
    • Authorized return URLs
    • Google OAuth setup
    • Office 365 OAuth setup
    • ZOHO OAuth setup
    • Service accounts
      • Setting up G Suite service account
      • Setting up Office 365 daemon app registration
  • Scheduling
    • Create your first appointment booking page
    • Calendar Booking Page
    • Booking API
    • Group Booking API
  • Workspace Addons
    • Outlook addins
      • Create your first Outlook addin
      • Office 365: Installing Outlook addin
    • Microsoft Teams apps
      • Microsoft Teams bot setup
      • Create your first MS Teams app
      • Installing MS Teams app
    • Chrome Extensions with Google authentication
    • Google Workspace Add-Ons
  • Dynamic API
    • What is Dynamic (Virtual) API?
    • Getting Started with Dynamic API
Powered by GitBook
On this page
  1. Authentication
  2. Service accounts

Setting up Office 365 daemon app registration

Set up an Office 365 daemon app registration to enable global admin authorizations, configure API permissions, and connect service accounts with Aurinko.

PreviousSetting up G Suite service accountNextCreate your first appointment booking page

Last updated 8 months ago

Setting up an Office 365 / Azure app registration that allows global admin authorizations (or daemon OAuth2 flow) is quite similar to the regular Azure app registration described in the article . Please follow "Creating an app registration" steps from that article if you have not created any app registrations yet or want to create a separate daemon app registration.

The following settings are specific to daemon app registrations (daemon OAuth2 flow).

Specifying API permissions


Head to the "API permissions" panel and click "Add a permission".

Choose Microsoft Graph set of permissions

Aurinko scope
Graph API permission

Mail.ReadOnly

Mail.Read

Mail.ReadWrite

Mail.ReadWrite

Mail.Send

Mail.Send

Calendar.ReadOnly

Calendars.Read

Calendar.ReadWrite

Calendars.ReadWrite

Contacts.ReadOnly

Contacts.Read

Contacts.ReadWrite

Contacts.ReadWrite

Then add all required Application permissions, i.e. Calendars.ReadWrite, Contacts.ReadWrite, Mail.ReadWrite, Mail.Send.

This is what your application permissions screen should look like

Creating OAuth credentials

Configure Aurinko to use your Office 365 OAuth (Daemon) credentials

Select your app at the top, choose Settings menu and switch to the OFFICE 365 tab. Enter Client ID, Private key, and Certificate into the form and save.

You are now all set to start connecting Office 365 service accounts to Aurinko!

You'll need to determine what Graph API permissions you add to your consent screen based on your application's behavior. Please reference this mapping to see how Aurinko scopes will map to Graph API permissions during the process:

Prepare a self-signed certificat, see for sample instructions. The certificate and its private key will need to be uploaded to Aurinko later. Then, head to the "Certificates & secrets" panel and click "Upload certificate".

Head on over to and log in.

authentication
this article
Aurinko portal
Office 365 OAuth setup