When using Creatio, one of the most power parts of the application is the ability to integrate your email and calendar with Creatio. If you’re company is using Office 365, you’ll need to do a few configuration steps in your Azure/Office 365 portal to allow Creatio to authenticate with your Office 365 accounts using OAuth. The steps outlined in this article will walk you through how to set this up. If you’re unsure about any of these steps, contact Creatio support or an Azure consultant. An overview of these steps are available in the Academy, however, the article below contains more detail for all steps.
Note: These steps are to be performed by your company’s Office 365 Administrator, not by individual users.
Log into the Azure portal at portal.azure.com
On the menu to the left, click “All Services”, then search for “App Registrations”, then click “New registration”
Enter the Display name of “Creatio”. For Supported Account Types select “My organization only”. Add the Redirect URI as the following, then click the Register button at the bottom.
https://<your site name>.creatio.com/0/rest/Office365OAuthAuthenticator/ProcessAuthenticationCode
Click “API permissions” on the menu to the left, then click “Add a permission”
In the Request API Permissions that opens the right, click on “APIs my organization uses” and search for “Office 365 Exchange Online”
Click on “Office 365 Exchange Online”
When it opens, click “Delegated permissions”, then under “EWS” check the box for “EWS.AccessAsUser.All”, the click the “Add permission” button at the bottom.
Select the “EWS.AccessAsUser.All” under “Office 365 Exchange Online”, then click the “Grant Admin consent for <org name>” button. Repeat this for “User.Read” under “Microsoft Graph”
Click “Overview” on the menu to the left, copy the value for “Application (client) ID” (we will use this later in step 10)
Click “Certificates & secrets” on the menu to the left, then click “New client secret”
You will need to select a time period the secret is for, the max is 24 months.
When done, copy the “Value” of the secret (we will use this later in step 10)
One thing to keep in mind, this secret value will expire based on the time period you selected (with a max of 24 months). This means when that period ends, you’ll need to create a new secret value – doing step 8 (this step) again, and then step 10 again to add the new value into Creatio.
Click the menu Icon, then select “All services” and search for “User settings”
Then click the “Manage how end users launch and view their applications”
Finally, change the setting for “User can consent to apps accessing company data on their behalf” to “Yes”
You are now done with the steps in the Azure portal. The remaining steps will be done in Creatio using the values copied in step 7 & step 8 above.
Log into Creatio and open the URL:
https://<your site name>.creatio.com/0/ClientApp/#/MailboxSettings
Locate Office 365 and click Edit
Then in the screen that opens, under “Additional settings”, change the authentication type to “OAuth 2.0” and enter the values copied from step 7 and step 8 above.
Save and the setup is complete.
From here, when users add their email account, they can choose Office 365 and they will be redirected to Office 365 to authenticate and then back to Creatio again.