Microsoft 365 send mail via smtp with oauth2 token "Authentication unsuccessful"
I want to send emails via smtp with an oauth2 token. But I always get the following error message: "Authentication unsuccessful".
Steps I have done:
- I registered an app in the Azure panel.
- Added the following permissions:
https://graph.microsoft.com/User.Read
First question here: Where can i find the permission https://outlook.office.com/SMTP.Send? Mentioned in https://learn.microsoft.com/en-us/exchange/client-developer/legacy-protocols/how-to-authenticate-an-imap-pop-smtp-application-by-using-oauth
Enabled "Authenticated SMTP" in the Microsoft Admin Center for the specific user.
I have recieved a token using the following endpoint: "https://login.microsoftonline.com/{tenant_id}/oauth2/v2.0/token" with the grant type: client_credentials. With the grant type client_credentials i can only use a default scope.
and followed this tutorial: https://learn.microsoft.com/en-us/exchange/client-developer/legacy-protocols/how-to-authenticate-an-imap-pop-smtp-application-by-using-oauth#smtp-protocol-exchange
And then authenticate myself, but got the following error message: "Authentication unsuccessful"
For sending mail via SMTP these permission are wrong
basically your token will have the wrong audience if you try to use them.
Also
Currently, Exchange Online doesn't support SMTP Oauth 2.0 client credential flow with non-interactive sign in. We are working on this, and it will be available by the end of 2023.
So what your trying to do with the client credentials flow won't work (until the end of the year), you can use the Delegate flow or switch to use the Graph API to send messages if you can which will be a better long term option
Where can i find the permission https://outlook.office.com/SMTP.Send?
If you follow the steps for POP and IMAP https://learn.microsoft.com/en-us/exchange/client-developer/legacy-protocols/how-to-authenticate-an-imap-pop-smtp-application-by-using-oauth#add-the-pop-and-imap-permissions-to-your-aad-application and use the "Office 365 Exchange Online" that will make sure you can request a Token with the correct audience.
- How to set up SMTP server in native Node.js -- no dependencies whatsoever
- Contact Form Submit Button link to Email
- How to stop dark mode at inline css?
- SendGrid modifies links inside email and they dont redirect to correct page
- Sendgrid: use template versions to support multiple languages
- Remove an attachment of a Gmail email with Google Apps Script
- Expected response code 250 but got code "", with message ""
- C# yandex mail send error 5.5.4 Error: send AUTH command first
- Searching for the word "Unsubscribe" as a hyperlink in an email
- Sql script to find invalid email addresses
- Validate an Email with a Regex expression in Rails
- Sending a multiple line body email from batch file using a PowerShell command
- May I ask how to use the Outlook email server to send emails? Identity authentication is required when viewing documents
- S/MIME Email Sent via Python and Microsoft Graph Works in Gmail but Not in Outlook
- How can I delete a message by message id with MailKit POP3 client?
- Laravel AWS SES The request signature we calculated does not match the signature you provided
- Odd <end> tag on message view Outlook 2013 Microsoft Office Interop
- Send mail using an email account created on Hostinger (PHP)
- Send email in Laravel 11
- Check if delay delivery is already set
- Using PHPmailer all mail landed in spam folder
- here-document gives 'unexpected end of file' error
- Sending Email with Cakephp 3
- Laravel-generated email not formatting HTML correctly
- Save multiple attachments, in one email, using the subject line, and incrementing that name
- AWS SES bounce subtype of "NoEmail"
- What does it mean to normalize an email address?
- Email Signature Spacing Issue Sending email from Outlook to Gmail
- Why Django lowercases only the domain part of email addresses in normalize_email?
- Can I change the USERNAME_FIELD in Django 1.5 without creating a custom user?