Forum Discussion
Graph permissions for Mail Read for application and restricted to one mailbox
Hey guys, we are moving our Applications away from legacy protocolls like POP3 and IMAP. The Application Vendors seem to be using different approaches. Some of them had an Company App registered w...
1) Only if you disable (exclude) MFA for the accounts that will be used. Alternatively the app can expose some sort of UI where you authenticate with the user, and perform MFA as needed, allowing them to capture and reuse the access/refresh token
2) See above
3) Up to you, if you want to limit access - you should. You can also use the recently introduced "native" RBAC controls for applications: https://techcommunity.microsoft.com/t5/exchange-team-blog/announcing-public-preview-of-role-based-access-control-for/ba-p/3688228
2) See above
3) Up to you, if you want to limit access - you should. You can also use the recently introduced "native" RBAC controls for applications: https://techcommunity.microsoft.com/t5/exchange-team-blog/announcing-public-preview-of-role-based-access-control-for/ba-p/3688228