Configuring OAuth for Email Monitor

Hello:

I am attempting to test the setup of Microsoft OAuth with our email monitor, but whenever I select the MS OAuth Email Auth Account, and attempt to save, we receive the error message as seen in attached 2022-09-21_17-14-18.png. We have attempted to regenerate the access tokens to no avail. Are there any additional suggestions to troubleshoot the issue? When creating the Email Auth Account, there are no errors with Microsoft authentication, but the error only occurs when attempting to select the MS OAuth account for usage with the pre-existing monitor.

Thank you.

Tags email-monitor oauth Microsoft-OAuth2
Asked by Anderson Hanchett on Wed 9/21/22 9:47 PM Last edited Wed 9/21/22 9:47 PM
Sign In to leave feedback or contribute an answer

Answer (1)

This answer has been marked as the accepted answer
Mark Sayers Thu 9/22/22 10:28 AM

Hello Anderson,

This error usually means that the account that authenticated to generate the access tokens for your auth account is not one that is permitted to access the mailbox in question.

I would suggest the following:

  1. Sign in to TDAdmin around SSO (*in a new browser that you typically do not use or an Incognito session*) https://yourTDXdomainhere/TDAdmin/Logintdauth.aspx
  2. Navigate to the Auth Accounts page of the desired monitor.
  3. Edit the Oauth auth account you created
  4. Cclick generate token button
  5. Sign in to the Microsoft page with the credentials of that mailbox
  6. Save the page
  7. switch the monitor back to the Oauth 2.0 account and save


You'll need to repeat the above step #1 also every time you go to create a new auth account for an email monitor. but either OAuth IMAP OR OAuth 2.0 auth account types will work.

No feedback