Enable Microsoft Graph API to allow BEMS Cloud to communicate with Microsoft Office
365
Microsoft Graph
API to allow BEMS
Cloud to communicate with Microsoft Office
365
Complete this task only if your
BEMS
Cloud environment requires new client app registrations. BEMS
Cloud to access Microsoft Office
365
to access users’ mailboxes and send notifications to users’ devices when new email is received in the user's mailbox using Microsoft Graph
API. When you configure the Microsoft Graph
API, your environment is using modern authentication. After you configure the Microsoft Graph
API, you must configure the autodiscover.
In 2022,
Microsoft
started to deprecate the Microsoft Exchange Web
Services
(EWS) for Microsoft Exchange
Online
APIs and replacing the EWS with the Microsoft Graph
API. For more information, visit techcommunity.microsoft.com and read 'Upcoming API Deprecations in Exchange Web Services for Exchange Online'. - Configure the email notifications for BlackBerry Work. For instructions, see Configure email notifications for BlackBerry Work.
- If you enableMicrosoft Graphusing a Client Certificate:
- In the management console, clickSettings > BlackBerry Dynamics > Email notifications.
- Click theMicrosoft Graphtab.
- Click .
- Select theUse Microsoft Graph clientcheck box.
- In theAuthentication typesection, select an authentication type based on your environment and complete the associated tasks to allowBEMSto communicate withMicrosoft Office 365:Authentication typeDescriptionTaskClient SecretThis option uses a client secret to allow theBEMSservice account to authenticate toMicrosoft Office 365. The client secret is created during the application registration process.In theClient Secretfield, enter theValuefor the client secret. For instructions on obtaining a client secret, see Obtain an Entra app ID for BEMS with client secret authentication.Client CertificateThis option uses a client certificate to allow theBEMSservice account to authenticate toMicrosoft Office 365.
- For theCertificate file (.pfx), clickBrowseand select the client certificate file. For instructions on obtaining the .PFX file, see Associate a certificate with the Entra app ID for BEMS
- In thePasswordfield, enter the password for the client certificate.
- In theAuthentication Authorityfield, enter the Authentication Server URL thatBEMSaccesses and retrieve the OAuth token for authentication withMicrosoft Office 365. By default, the field is prepopulated with https://login.microsoftonline.com/common.The authentication server URL must be in the format of https://login.microsoftonline.com/tenantnameor https://login.microsoftonline.com/tenantid.
- In theClient App IDfield, enter theEntraapp ID for the credential authentication. For instructions, see Obtain an Entra app ID for BEMS with credential or passive authentication.
- In theServer Namefield, typehttps://graph.microsoft.com.
- In theEnd User Email Addressfield, type an email address to test connectivity toMicrosoft Office 365using the service account. ClickTest connection. You can delete the email address after you complete the test.
- ClickSave.
- Configure the Autodiscover and Exchange Options in Configure email notifications for BlackBerry Work. You can configure the settings using one of the following authentication types: Credential, Credentials + Modern Authentication, Client Certificate + Modern Authentication, or Passive Authentication type.