Configuring the connection to the Exchange server
The connection parameters to the Exchange server are used to synchronize schedules or appointments from Akuiteo into a Microsoft Outlook calendar.
The connection to the Exchange server is configured in the Administration console, from the Third-party interfaces > Exchange menu.
| 1 | Fill in the following fields to configure the connection to the Exchange server: |
| Field | Description | ||||||
|---|---|---|---|---|---|---|---|
| Delegated user |
Fill in the login of the Exchange user to connect to the server. If you are using Exchange 365, this user must have a delegation to have complete access over other user accounts. |
||||||
| Linked password | Specify the password associated with the login of the Exchange user. | ||||||
| EWS service URL |
Fill in the URL to connect to the Exchange server. Example https://outlook.office365.com/EWS/exchange.asmx |
||||||
| Exchange server version | Select the Exchange server version from the drop-down list. | ||||||
| Maximum number of threads for synchronizing | Specify a maximum number for simultaneous synchronizations. | ||||||
| Use impersonation |
If you are using Exchange 365, check this box. Office 365 enforces a limit on the number of web service calls a given user can make. Impersonation is used to assign a role to an Exchange user and bypass this limit. To be able to use impersonation, you must: Delete all account delegations for the Exchange technical user1. Download and install PowerShell. 2. From PowerShell, run the following command lines:
Give the impersonation right to the Exchange technical user1. Connect to the Exchange Admin Center from the Office 365 portal. 2. Go to the Permissions > Admin Roles menu. 3. Create a new role by filling the following information:
|
||||||
| Test user | Specify an existing email address to make sure that Akuiteo can access the corresponding account using the impersonation. | ||||||
| Use OAUTH authentication (Exchange 365 only) |
Enable or disable OAUTH authentication to connect to Exchange. This option must be enabled if Exchange 365 is used by Akuiteo in your organization. Otherwise, it must be disabled. |
||||||
| Use Graph API Library |
Check this box if you use the Microsoft Graph API. For more information about Microsoft graph configuration, refer to Configuration for Microsoft Graph. |
||||||
| Tenant ID |
This field must be specified if Use OAUTH authentication (Exchange 365 only) or Use Graph API Library is enabled. Specify the tenant ID provided by Microsoft for the OAUTH authentication. |
||||||
| Client ID |
This field must be specified if Use OAUTH authentication (Exchange 365 only) or Use Graph API Library is enabled. Specify the client ID for the OAUTH authentication. |
||||||
| Client Secret |
This field must be specified if Use OAUTH authentication (Exchange 365 only) or Use Graph API Library is enabled. Specify the client secret for the OAUTH authentication. |
| 2 | Click on Save for each field that is filled in or modified to take into account the value specified. |
| 3 | Click on the Test button to test the connection to the Exchange interface using the values specified. |
Accessing the Azure portal
| 1 | In a web browser, enter the following address https://portal.azure.com/ and log in as an administrator. |
| 2 | In the home page, click on Microsoft Entra ID. |
Registering Akuiteo in the Azure AD's directory
| 1 | Click on App registrations from the left menu, then click on New registration. |
| 2 | Give a Name to this new registration (for example Akuiteo Microsoft Graph Exchange) and leave the Accounts in this organizational directory only (XXX only - Single tenant) option checked. Click on Register. |
The app page is displayed.
| 3 | Copy the following information: |
- Application ID (customer)
- Directory ID (tenant)
To do so, hover over each field then click on the icon that enables you to copy the information to the clipboard. Keep this information in a separate document.
Creating a "client secret" to identify the Akuiteo server
| 1 | Click on Certificates & secrets from the left menu, then click on New client secret. |
| 2 | Enter a Description ( Secret client Akuiteo for example) then select an Expiration date for the key, depending on your security policy. Click on Add. |
Important
When the expiration date is reached, you must create a new "client secret".
| 3 | Hover over the Value field then click on the button to copy the information to the clipboard. Keep this information in a separate document. |
Important
You must copy these values right after creating the client secret because the information will not be accessible afterward and you must generate a new client secret.
Requesting API permissions
| 1 | From the API permissions menu, click on Add an authorization then on Microsoft Graph API. |
| 2 | Click on Application permissions. |
| 3 | From the authorizations list, check the Calendars.ReadWrite authorization then click on the Add authorizations button. |
| 4 | From the Configured permissions page, click on the Grant admin consent for XXX button, then click on Yes to confirm. |
Configuring the Administration console in Akuiteo
In the Administration console, from
Important
Modifications of the setup from the Administration console can take minutes before it is taking into account for the Microsoft Graph API.
| Field | Description |
|---|---|
| Delegated user | Fill in the login of the Exchange user to connect to the server. |
| Linked password | Specify the password associated with the login of the Exchange user. |
| EWS service URL |
Fill in the URL to connect to the Exchange server. Example https://outlook.office365.com/EWS/exchange.asmx |
| Exchange server version | Select the Exchange server version from the drop-down list. |
| Maximum number of threads for synchronizing | Default value |
| Use impersonation | Uncheck this box. |
| Test user | Empty |
| Use OAUTH authentication (Exchange 365 only) | Uncheck this box. |
| Use Graph API Library | Check this box |
| Tenant ID | Enter the Directory ID (tenant) value from Azure. |
| Client ID | Enter the Directory ID (customer) value from Azure. |
| Client Secret | Enter the Value of the client secret from Azure. |