Skip to content

Azure Active Directory with Exchange Online

Azure AD with Exchange Online application on hire2retire uses OAuth authorization for authenticating Azure AD and Basic authorization for authenticating Exchange Online.

By linking your Azure AD and Exchange Online accounts with with hire2retire, you can authorize RoboMQ to have a delegated access on your behalf to both applications. Hire2Retire needs the following permissions on your account to provide a seamless integration experience:

For Azure Active Directory

Scopes Explanation
User.ReadWrite.All Read and write all user's full profiles
Group.ReadWrite.All Read and write all groups
Directory.AccessAsUser.All Application requires this scope to reset their password.
offline_access Maintain access to data you have given it access to. When a user approves the offline_access scope, your app can receive refresh tokens from the Microsoft identity platform token endpoint. Refresh tokens are long-lived. Your app can get new access tokens as older ones expire.

For Exchange Online

Role Explanation
Exchange Administration Can manage all aspects of the Exchange product.

Create a Connection

Azure AD Connection

You need an Azure Active Directory account before using Azure AD application on hire2retire.

Azure AD with Exchange Online Connection Name

Figure 1. Azure AD with Exchange Online Connection set up

On clicking the 'Link Account' button, you will be redirected to Microsoft Account Authorization screen. and then enter the account details to use the Azure Active Directory for this flow.

Azure AD Sign In

Figure 2. Azure AD Sign In

Exchange Online Connection

You need an Azure Active Directory account with: * An exchange administrator role on the Exchange Online * MFA should be turned off for that account.

Azure AD with Exchange Online Connection Name

Figure 3. Azure AD with Exchange Online Connection set up