Microsoft oAuth in outbound mail setup
Overview
Email authentication is evolving, and we're making sure you are always prepared for the latest advancements.
To ensure continued support for secure email authentication, we are introducing Microsoft Office 365 Exchange (Graph) with OAuth 2.0 as a new option in Outbound Mail Setup.
Unlike traditional SMTP-based authentication, this method leverages the Microsoft Graph API, which is more secure, modern, and recommended by Microsoft. Unlike SMTP, which relies on direct email submission via a mail server, Microsoft Graph enables better access control, improved security policies, and enhanced monitoring capabilities.
This update comes in response to Microsoft's deprecation of Basic Authentication, ensuring that users can transition to a more secure and future-proof authentication mechanism.
New outbound mail option
The new and recommended option under "What kind of mail service are you using?" is Microsoft Office 365 Exchange (Graph) with OAuth 2.0.
When selecting Microsoft Office 365 Exchange (Graph) with OAuth 2.0, users must choose an existing Microsoft Client Credentials Authentication Object in the system. Additionally, the corresponding Azure environment must be properly configured to allow email sending.
Detailed setup instructions: Configuring Outbound mail setup with Microsoft client credentials
Standard configuration fields
Regardless of the selected mail service, users will still configure the following standard fields:
- Host and Port – Defines the mail server connection details.
- TLS – Enables encryption for secure email transmission.
- Username – Used for identification in email headers.
- From email address – The sender’s email address.
- Backend failure alerts email address – An email address for receiving notifications about delivery failures.
Testing and validation
Before saving the configuration, users can test the setup to ensure proper authentication and email functionality.
Outcome
By transitioning to Microsoft Graph, clients gain access to a more secure and resilient email solution, fully aligned with Microsoft's latest authentication standards. This update ensures a smooth migration away from Basic Authentication while strengthening security and compliance measures for outbound email services.