> Documentation > End User Access > Command Center > Applications > Exchange > Exchange Archiving > User Mailbox > Exchange Online (Through Azure Active Directory) > Prerequisites

Registering the Application for Exchange Online (Through Azure Active Directory)

When you use Exchange Online (Through Azure Active Directory) to archive messages, you must register the application with Azure Active Directory (Azure AD). Azure AD manages the connection between Office 365 with Exchange and the Exchange Mailbox. You use information that you generate in Azure AD to configure your the Exchange Mailbox.

When you perform this procedure, record the following values of the new application. You will use these values later when you configure your Commvault environment.

  • Application ID

  • Key value

  • Directory ID

Note

Disclaimer: This procedure is performed using the Azure Active Directory (Azure AD) Web application. The Azure AD application is subject to change without notice. Consult Microsoft documentation, for example "Azure Active Directory Documentation" (https://docs.microsoft.com/en-us/azure/active-directory/).

Procedure

  1. Log on to the Azure portal (https://portal.azure.com/) using your global admin user account.

  2. Go to Azure Active Directory.

  3. In the navigation pane, click App registrations.

    The App registrations page appears.

  4. Click New registration.

    The Register an application screen appears.

  5. In the Name box, type a name for the app.

  6. Under Supported account types, select Accounts in this organizational directory only (tenant_prefix - Single tenant).

  7. To verify the status of the app and to authorize the app from the Command Center, under Redirect URI, enter the Command Center URL.

    For example, enter https://host_name.domainname.com/adminconsole.

  8. Click Register.

  9. Copy and paste the following values in a document that you can access later:

    • Application ID

    • Directory ID

    You will enter these values in the Commvault software when you complete the Office 365 guided setup.

  10. On the Overview tab, go to View API Permissions > Add a permission > Microsoft Graph, and then click Application Permissions.

    The permissions screen appears.

  11. Expand Directory, and then select the Directory.Read.All permission.

  12. Click Add Permission.

  13. On the API Permissions tab, under Grant consent, click Grant admin consent for tenant name.

    A confirmation dialog box appears.

  14. Click Yes.

    A message states that admin consent is granted for the requested permissions.

  15. In the navigation pane, click Certificates & secrets.

    The Certificates & secrets page appears.

  16. Click New client secret.

    The Add a client secret dialog box appears.

  17. Enter a description, and then select the maximum value.

  18. Click Add.

  19. Copy and paste the client secret value in a document that you can access later.

    1. You will enter this value in the Command Center when you complete the Office 365 guided setup.

Log On to the Azure Portal as the Global Administrator

  1. Log on to the Azure portal (https://portal.azure.com/) using your global administrator account.

  2. Go to Azure Active Directory.

Register Exchange Online in the Azure Portal

  1. In the navigation pane, click App registrations.

    The App registrations page appears.

  2. Click New registration.

    The Register an application screen appears.

  3. In the Name box, type a name for the app.

  4. Under Supported account types, select Accounts in this organizational directory only (tenant_prefix - Single tenant).

  5. To verify the status of the app and to authorize the app from the Command Center, under Redirect URI, enter the Command Center URL.

    For example, enter https://host_name.domainname.com/adminconsole.

  6. Click Register.

  7. Copy and paste the following values in a document that you can access later:

    • Application ID

    • Directory ID

    You will enter these values in the Commvault software when you complete the Office 365 guided setup.

Request and Grant Permissions for Azure APIs

  1. In the navigation pane, click API permissions.

  2. Click Add a permission.

  3. Click Microsoft Graph.

  4. Click Application permissions.

  5. Select the following permissions:

    • Directory: Directory.Read.All

    • Group: Group.ReadWrite.All

  6. Click Add permissions.

  7. Click Add a permission.

  8. At the bottom of the page, under Supported legacy APIs, click Exchange.

  9. Click Application permissions.

  10. Select full_access_as_app.

  11. Click Add permissions.

  12. Click Grant admin consent for tenant_name.

Create a Client Secret

  1. In the navigation pane, click Certificates & secrets.

    The Certificates & secrets page appears.

  2. Click New client secret.

    The Add a client secret dialog box appears.

  3. Enter a description, and then select the maximum value.

  4. Click Add.

  5. Copy and paste the client secret value in a document that you can access later.

    You will enter this value in the Command Center when you complete the Office 365 guided setup.

Loading...