Skip to content

Office365 Service Authentication

Use this page when Emakin needs Office365 server-to-server access for integrations such as Office365 sign-in or OneDrive for Business file services.

Note: The Microsoft application-registration steps below reflect the currently documented setup and may differ from the latest Microsoft 365 or Entra admin portal flow.

Creating Service Account

Before allowing access, register Emakin as an application. According to the current documentation, this is already configured for cloud deployments and is mainly required for on-premises environments.

  1. Log in to apps.dev.microsoft.com.
  2. Create a new application and select Web as the application type.
  3. Enter the application name, for example emakin.
  4. Enter the callback paths:
  5. https://oauth.emakin.com/oauth/callback
  6. http://mydomain.emakin.com/oauth/callback
  7. Generate a new key pair.
  8. Download the generated .pfx file.

Configuring Emakin for Office365 Integrated Service

  1. Open the Host Administration Panel.
  2. Go to Integrated Services under the application settings.
  3. Add a new service with service type Office365.
  4. Enter an integration name, for example Service_Office365.
  5. Expand the service row details.
  6. Enter the Client Id and leave Client Secret empty.
  7. Enter the Service Account Id created in the service-account step.
  8. Enter the service-account key in one of the documented formats:
  9. BASE64;<CertificateBase64>;<CertificatePassword>
  10. URL;<CertificateFileUrl>;<CertificatePassword>

Configuring Emakin for One Drive for Business Integration

  1. Open the Host Administration Panel.
  2. Go to Other Services under the application settings.
  3. Add a new file service that uses the Office 365 client type with the Office365 integration service.
  4. Enter File.ReadWrite.All Sites.ReadWrite.All in the scope setting.
  5. If you want to allow offline access to the OneDrive API without user interaction, add the offline scope as a space-separated value.