Info
Content

Office365: HOW TO GET TenantId, ClientId and ClientSecret

If you use Microsoft office 365 for email sending. Your company Microsoft admin need to get following settings from Azure AD Application 

  • Directory (Tenant) ID

  • Application (Client) ID

  • Client Secret Value

These three values are required for integrating CLOUDEX TMS with Microsoft Graph using OAuth2.

1️⃣ Sign in to Azure Portal

Open: https://portal.azure.comSign in with a Microsoft 365 Global Admin or Application Administrator account.

2️⃣ Open “Microsoft Entra ID” (Azure AD)

Left menu → Microsoft Entra ID
(or search “Entra ID” in the top search bar)

image-1764595464188.png

3️⃣ Create a new App Registration

  1. Left menu: App registrations

  2. Click New registration

image-1764595545977.png

image-1764595721522.png

URL type must be "Web" NOT "Single page application"
Looks like beter to register as Single tenant. If you register as multi tenant then can be so than you need to enter CLOUDEX MpnId 7086574 
Fill the form:
Field Value
Name CLOUDEX TMS Email Integration (or any name)
Supported account types ✔️ Accounts in any organizational directory (multitenant)
Redirect URI

Select Web → Enter your redirect: 
https://my.cloudex.app/YourCompanyCode/Services/Office365Callback.aspx

 

1) Replace YourCompanyCode with your web app CompanyCode 

2) Redirect URL is case-sensitive

Click Register.

4️⃣ Get the Tenant ID and Client ID

After creation, you will be redirected to the app’s Overview page.
Here you will see:
✔ Directory (Tenant) ID
✔ Application (Client) ID

image-1764596895074.png

Copy them and save.

You already have 2/3 values.

5️⃣ Create Client Secret

Side menu → Certificates & secrets

  1. Click New client secret

  2. Enter a name: CLOUDEX Secret

  3. Choose expiration:

    • 6 months (not recommended)

    • 12 months

    • 24 months (recommended)

    • Or “Custom”

  4. Click Add

image-1764596973920.png

image-1765269172104.png

IMPORTANT ⚠️

Copy the Client Secret VALUE immediately.
You will never be able to see it again later.

Store it securely (Azure Key Vault, password manager, etc).

Now you have:

  • ClientId

  • TenantId

  • ClientSecret Value

6️⃣ Add Required API Permissions

Side menu → API permissions

Click:

  • Add a permission

  • Microsoft Graph

  • Delegated permissions

Search + select:

Mail.Send
User.Read
offline_access

Then click Add permissions.

Then click Grant admin consent.

image-1764597509869.png

Can be in new interface need to choose Microsoft Graph API

image-1768998214141.png

7️⃣ Final Check: Authentication Settings

Side menu → Authentication

Ensure:

✔ Your redirect URI is correct
✔ “Allow public client flows” is OFF
✔ “Access tokens” and “ID tokens” are ON

image-1764598136406.png

🎉 DONE — Values ready to use

You now have everything:

Parameter Where to find it
TenantId App → Overview → Directory (tenant) ID
ClientId App → Overview → Application (client) ID
ClientSecret App → Certificates & Secrets → Value

Problem solution

In case you have any problems sending out emails from CLOUDEX TMS or Ozols you can run "Diagnose and solve problems" tool

image-1768999877635.png

Back to top