Blog Post

Exchange Team Blog

2 MIN READ

Retirement of RBAC Application Impersonation in Exchange Online

Platinum Contributor

Feb 20, 2024

Update: please see our updated blog post on this subject. Today we are announcing that we will begin blocking the assignment of the ApplicationImpersonation role in Exchange Online to accounts star...

Updated Nov 22, 2024

Version 12.0

Platinum Contributor

Joined April 19, 2019

View Profile

Exchange Team Blog

You Had Me at EHLO.

j_ku

Copper Contributor

Apr 29, 2024

_cparker We would like to ensure whether this deprecation will affect the way we access the EWS API. Below is how we create the access token and access the API. Could you please help verify if we will be affected once the deprecation is done?

Permission: full_access_as_app (Application Permission)

Access Token Request

Parameters
    client_id: client id,
    redirect_uri: redirect_uri,
    grant_type: 'client_credentials',
resource: 'https://outlook.office365.com',

client_assertion_type: 'urn:ietf:params:oauth:client-assertion-type:jwt-bearer',

client_assertion: client_assertion

End Point
https://login.windows.net/tanant/oauth2/token?api-version=1.0

Request Headers
For GET requests
Authorization: Bearer <access token>

For POST requests
Authorization: Bearer access token
X-AnchorMailbox: user_mailbox