Obtain an

Entra

app ID for

BEMS

with certificate-based authentication

Log in to portal.azure.com.

In the left column, click

Azure Active Directory

.

Click

App registrations

.

Click

New application registration

.

In the

Name

field, enter a name for the app.

In the

Application type

drop-down list, select

Web app / API

.

In the

Sign-on URI

field, enter

http://<

name of the app given in step 5

>

.

Press

Enter

.

Click

Create

.

Select the app name that you created.

Click

Settings

.

In the

Settings

column, click

Properties

.

In the

Properties

column, copy the

Appl ID URI

.

Click

Required permissions

.

Click

Add

.

Click

.

Select

Office 365 Exchange Online (Microsoft Exchange)Select an API

.

Click

Select

.

In the

Select anApplication Permissions

section, select the

Use Exchange Web Service with full access to all mailboxes

checkbox.

Click

Select

.

Click

Done

.

Click

Grant Permissions

.

Click

Yes

.

Click

Add

.

Click

Select an API

Click

Microsoft Graph

.

Click

Select

.

In the

Delegated Permissions

section, select the

Sign in and read user profile

checkbox.

Click

Select

.

Click

Done

.

Click

Grant Permissions

.

Click

Yes

.

Copy the

Application ID

. The Application ID is displayed in the main

App Registrations

page for the specified app. This is used as the

Client application ID

.

Do not close portal.azure.com.