Configure OAuth

You can configure OAuth to use Email SMTP instead of a username and password. This service-to-service flow provides a secure connection for your email notifications without the manual steps required by the SMTP classic authorization. Currently, Microsoft Graph API is the only supported OAuth email provider.

Prerequisites

• Assigned the following API permissions in the Azure Portal: Mail.Send, User.Read.All, and Mail.ReadWrite.

• Noted the Object ID of the Azure user account that will send the emails.

• Configured the Microsoft Graph API user authentication.

Steps

1. In the Admin Console, click Alerts > Email Configuration.

   The Alerts page opens.

2. In the Email Server Type list, select OAuth (MS Graph).

   Note If this option is grayed out, the OAUTH2_LOGIN_ENABLED variable is set to FALSE. Change the value of the variable to TRUE to enable the option.

3. In the OAuth Provider list, select the provider you created.

4. In the Sender's Azure ID field, enter the Object ID of the user account that will send the emails.

5. Complete the required fields and click Validate Email to confirm the connection.

What's next

You can now create a data quality rule and assign an alert to receive notifications via your new OAuth connection.