Configuring the connection to the Exchange server
The connection parameters to the Exchange server are used to synchronize schedules or appointments from Akuiteo into a Microsoft Outlook calendar.
The connection to the Exchange server is configured in the Administration console, from the Third-party interfaces > Exchange menu.
| 1 | Fill in the following fields to configure the connection to the Exchange server: |
| Field | Description | ||||||
|---|---|---|---|---|---|---|---|
| Delegated user |
Fill in the login of the Exchange user to connect to the server. If you are using Exchange 365, this user must have a delegation to have complete access over other user accounts. |
||||||
| Linked password | Specify the password associated with the login of the Exchange user. | ||||||
| EWS service URL |
Fill in the URL to connect to the Exchange server. Example https://outlook.office365.com/EWS/exchange.asmx |
||||||
| Exchange server version | Select the Exchange server version from the drop-down list. | ||||||
| Maximum number of threads for synchronizing | Specify a maximum number for simultaneous synchronizations. | ||||||
| Use impersonation |
If you are using Exchange 365, check this box. Office 365 enforces a limit on the number of web service calls a given user can make. Impersonation is used to assign a role to an Exchange user and bypass this limit. To be able to use impersonation, you must: Delete all account delegations for the Exchange technical user1. Download and install PowerShell. 2. From PowerShell, run the following command lines:
Give the impersonation right to the Exchange technical user1. Connect to the Exchange Admin Center from the Office 365 portal. 2. Go to the Permissions > Admin Roles menu. 3. Create a new role by filling the following information:
|
||||||
| Test user | Specify an existing email address to make sure that Akuiteo can access the corresponding account using the impersonation. | ||||||
| Use OAUTH authentication (Exchange 365 only) |
Enable or disable OAUTH authentication to connect to Exchange. This option must be enabled if Exchange 365 is used by Akuiteo in your organization. Otherwise, it must be disabled. |
||||||
| Use Graph API Library |
Check this box if you use the Microsoft Graph API. For more information about Microsoft graph configuration, refer to Configuration for Microsoft Graph. |
||||||
| Tenant ID |
This field must be specified if Use OAUTH authentication (Exchange 365 only) or Use Graph API Library is enabled. Specify the tenant ID provided by Microsoft for the OAUTH authentication. |
||||||
| Client ID |
This field must be specified if Use OAUTH authentication (Exchange 365 only) or Use Graph API Library is enabled. Specify the client ID for the OAUTH authentication. |
||||||
| Client Secret |
This field must be specified if Use OAUTH authentication (Exchange 365 only) or Use Graph API Library is enabled. Specify the client secret for the OAUTH authentication. |
| 2 | Click on Save for each field that is filled in or modified to take into account the value specified. |
| 3 | Click on the Test button to test the connection to the Exchange interface using the values specified. |
Configuration for Microsoft Graph
Accessing the Azure portal
| 1 | In a web browser, enter the following address https://portal.azure.com/ and log in as an administrator. |
| 2 | In the home page, click on Microsoft Entra ID. |
Registering Akuiteo in the Azure AD's directory
| 1 | Click on App registrations from the left menu, then click on New registration. |
| 2 | Give a Name to this new registration (for example Akuiteo Microsoft Graph Exchange) and leave the Accounts in this organizational directory only (XXX only - Single tenant) option checked. Click on Register. |
The app page is displayed.
| 3 | Copy the following information: |
- Application ID (customer)
- Directory ID (tenant)
To do so, hover over each field then click on the icon that enables you to copy the information to the clipboard. Keep this information in a separate document.
Creating a "client secret" to identify the Akuiteo server
| 1 | Click on Certificates & secrets from the left menu, then click on New client secret. |
| 2 | Enter a Description ( Secret client Akuiteo for example) then select an Expiration date for the key, depending on your security policy. Click on Add. |
Important
When the expiration date is reached, you must create a new "client secret".
| 3 | Hover over the Value field then click on the button to copy the information to the clipboard. Keep this information in a separate document. |
Important
You must copy these values right after creating the client secret because the information will not be accessible afterward and you must generate a new client secret.
Requesting API permissions
| 1 | From the API permissions menu, click on Add an authorization then on Microsoft Graph API. |
| 2 | Click on Application permissions. |
| 3 | From the authorizations list, check the Calendars.ReadWrite authorization then click on the Add authorizations button. |
| 4 | From the Configured permissions page, click on the Grant admin consent for XXX button, then click on Yes to confirm. |
Configuring the Administration console in Akuiteo
In the Administration console, from
| Field | Description |
|---|---|
| Delegated user | Fill in the login of the Exchange user to connect to the server. |
| Linked password | Specify the password associated with the login of the Exchange user. |
| EWS service URL |
Fill in the URL to connect to the Exchange server. Example https://outlook.office365.com/EWS/exchange.asmx |
| Exchange server version | Select the Exchange server version from the drop-down list. |
| Maximum number of threads for synchronizing | Default value |
| Use impersonation | Uncheck this box. |
| Test user | Empty |
| Use OAUTH authentication (Exchange 365 only) | Uncheck this box. |
| Use Graph API Library | Check this box |
| Tenant ID | Enter the Directory ID (tenant) value from Azure. |
| Client ID | Enter the Directory ID (customer) value from Azure. |
| Client Secret | Enter the Value of the client secret from Azure. |
