Azure/Office 365 Integration

This process can be used for both Azure Single Sign On and Office 365 email.

First you need to setup an Azure App registration.

• Login to https://portal.azure.com/ 
• Select/Search App Registration
• Select New Registration
• Supported account types (pick one):
  •  Single tenant – “Accounts in this organizational directory only (Company Pty Ltd only - Single tenant)" (default)
  •  Multitenant – “Accounts in any organizational directory (Any Microsoft Entra ID tenant - Multitenant)" (if required)
• Set Redirect URLs to:
  • https://example.bluetrait.io/profile/azure/
  • https://example.bluetrait.io/
• Setup Microsoft Graph Application Permissions with the following:
  • Mail.Read Application Admin Consent YES -> For Office 365 Email Integration
  • Mail.Send Application Admin Consent YES -> For Office 365 Email Integration
  • User.Read.All Application Admin Consent YES -> For Azure SSO Integration
• Record the following information (from Certificates & secrets)
  • Application (client) ID
  • Directory (tenant) ID
  • Client Secret
• Enter these details in Bluetrait -> Settings -> Azure
  • Multi-tenant: turn 'On' only if your app is Multitenant
• Enable Azure AD in Bluetrait -> Settings -> Authentication
• For Email Add Azure Send/Receive Accounts in Bluetrait -> Settings -> Email

Added Friday 17th July 2020 Last modified Wednesday 29th October 2025