Converting to Shared Mailbox and MS OAuth2

Hi all,

I'm wanting to switch all my generic Microsoft Exchange email accounts that I use for TDX (monitoring, replies, etc.) into shared mailboxes so I don't have to deal with password updates. I have a question about the process for those of you who have already done so and are using MS OAuth2 secret and token. After you've converted those email accounts, did you have to do anything with the OAuth2 account entries in TDX or did they just continue working after conversion? If you did have to make any adjustments to your reply/ticket monitor, what were they?

Thanks!

Tags conversion sharedmailbox Microsoft-OAuth2
Asked by Dan Olivas on Thu 9/14/23 4:13 PM
Sign In to leave feedback or contribute an answer

Answer (1)

This answer has been marked as the accepted answer
Brittany Renn Fri 9/15/23 9:40 AM

Hi Dan, 

You would need to create new auth accounts for your email monitors and be sure to generate the access tokens on each of those accounts through a user who has access to the shared mailbox. Then, point your email monitors to use the new Auth Account(s). Here is an article that outlines creating new auth accounts: https://solutions.teamdynamix.com/TDClient/1965/Portal/KB/ArticleDet?ID=105410

Let me know if you have further questions. 

Best,

Brittany Renn

TDX Support

No feedback
Hi Brittany,

Thanks for the reply! Just a follow up to your reply... I take it I should have the email accounts converted to shared mailboxes before creating the new app registrations, right? I'm only asking to make sure I make the conversion and implementation of those mailboxes in TDX as seamless as possible. - Dan Olivas Mon 9/18/23 3:37 PM
Yes, you'll want to convert it before creating the app registration, make sure the app is allowed to access it, and use an account when generating the access token for the auth account that has full read/manage permissions over the mailbox in question. Ideally, you will want to make it be an Azure administrative "service account" (just make an admin account that you can use as a service type account to grant it read/manage permissions over mailboxes you want to monitor in TDX). Then use that Azure account's credentials any time you are generating access tokens for TDX OAuth accounts for your monitors. - Brittany Renn Tue 9/19/23 11:33 AM
Thanks for the info! I have all I need to get this completed. - Dan Olivas Thu 9/21/23 1:52 PM