How to get OAuth2 access token for EWS managed API in service/daemon application RRS feed

  • Question

  • Scenario

    I have an Exchange Online environment and service/daemon (no interactive user) application on the Azure VM. Service uses EWS managed API to work with emails in the mailbox of any tenant user. Now EWS client uses Basic authentication that, according to Microsoft, will become unsupported in EWS to access Exchange Online.

    So, I need to use OAuth 2.0 in EWS client and find a way to get valid access token for service/daemon application to use with EWS managed API.

    I registered application with Azure Active Directory on portal.


    What permission should I grant to the registered application for it to be able to update emails in a mailbox of any user from the parent tenant.

    Tuesday, July 16, 2019 1:35 PM


  • The permissions you need are "full_access_as_app" or the full name "Use Exchange Web Services with full access to all mailboxes". You can find it under the "Office 365 Exchange Online" API
    Tuesday, July 16, 2019 6:50 PM