Using the Microsoft Graph API to send the Smart Comms allows Borealis' clients to use their own infrastructure/domain (via a Microsoft Azure app) instead of having Borealis send the Smart Comms on their behalf (accomplished using a DKIM and SPF key). This, in turn, allows Borealis' clients to have tighter security since they do not allow other domains (e.g. : Borealis' domain) to send emails on their behalf.
The Microsoft Azure app can even be further configured to only allow sending as a certain user (or subset of users).
Register Your Application in Azure
- Open your Azure Portal and navigate to Azure Active Directory.
- In the left hand menu, click App registrations.
- Click New Registration.
- Enter an application name in the Name field.
- Click Register.
Setup Your Secret Client ID in Azure
Important: Do not navigate away from the page once you create the client secret.
- Open your Azure Portal and navigate to Azure Active Directory.
- Select the Microsoft Graph API app.
- In the left hand menu, click Certificates & secrets.
- Navigate to the Client secrets tab.
- Click the New Client Secret button.
- Populate the Description and Expires fields as needed or leave the default values.
- Click the Add button.
You will see the Client Secret displayed in plain text until you leave the page. - Copy the Value field and store it safely.
If you leave the page and comeback to get the value the Value field, you will not be able to copy it because it is hidden.
Add Permissions
- Open your Azure Portal and navigate to Azure Active Directory.
- Select the Microsoft Graph API app.
- In the left hand menu, click API Permissions.
- Click Add a permission.
- Click Microsoft Graph.
- Select Application Permissions and add the Mail.send permission.
- Click Add Permission.
- Click Grant Permission.
Setup the General Parameters in Borealis
- Navigate to General Parameters in Configuration.
- In the left hand record menu, select Smart communication email graph api configurations under Email.
- Click on the Edit button in the upper right corner of the information window.
- Copy your Tenant ID, Client ID and Client secret key in their respective fields.
- You can find your Tenant ID and Client ID in the Overview from the left hand menu of your Azure Active Directory after selecting the Microsoft Graph API registered previously.
- The Client secret key can be retrieved from where it was previously stored when created.
- Flag Send emails using Microsoft Graph Api.
- Click the Save button.