How to Configure Microsoft Graph OAuth 2.0 for Email SMTP
Step 1: Prerequisites
Before you begin, ensure the following are available:
Access to Microsoft Entra ID
A valid mailbox (example:
sender@yourdomain.com)A verified domain in the tenant
Admin privileges to grant Application permissions
Access to the web application Admin → Reseller Settings
⚠️ Note: Application permissions require admin consent and cannot be approved by regular users.
Step 2: Register an Application in Microsoft Entra ID
Step 1: Create App Registration
Log in to Entra ID
Navigate to: Applications → App registrations → New registration
Fill in the form:
Name:
Email OAuthSupported account types: Single tenant
Redirect URI: Not required
Click Register
Step 2: Capture App Identifiers
After registration, copy and securely store the following values:
Directory (tenant) ID →
TENANT_IDApplication (client) ID →
CLIENT_IDStep 3: Create a Client Secret
Open the registered application
Go to: Certificates & secrets → Client secrets
Click New client secret
Define:
Description (e.g.,
SMTP OAuth Secret)Expiration period (recommended: 12 or 24 months)
Click Add
⚠️ Important: Copy the Value immediately. This will not be shown again.
Client Secret Value →
CLIENT_SECRETStep 4: Assign Microsoft Graph API Permissions
Step 1: Add Permission
Go to API permissions
Click Add a permission
Select Microsoft Graph
Choose Application permissions
Search and select:
Mail.Send
Click Add permissions
Step 2: Grant Admin Consent
On the API permissions page
Click Grant admin consent for
Confirm the action
✅ Status should show Granted for
Step 5: Configure SMTP Email Settings in the Platform
Once all Microsoft-side configuration is complete:
Log in to the Web Application Admin Panel
Navigate to: Admin → Reseller Settings → SMTP Email Settings
Fill in the fields using the values obtained earlier
Testing and Validation
After saving the SMTP settings:
Trigger a test email from the platform
Confirm:
Email is delivered successfully
No authentication errors appear at the top of the page
If email fails:
Reconfirm Mail.Send permission
Ensure admin consent was granted
Verify sender mailbox exists and is licensed
Troubleshooting
Issue:
UnauthorizedorInvalid clientConfirm Tenant ID and Client ID are correct
Ensure secret value (not secret ID) is used
Issue:
Insufficient privilegesMail.Send permission not granted
Admin consent missing
Issue: Emails not received
Check spam/junk folder
Confirm sender address matches configured mailbox
Related Articles
How to Configure Gmail OAuth for Email SMTP
OAuth (Open Authorization) is a protocol that allows users to grant third-party applications limited access to their resources without sharing their passwords. Gmail OAuth is commonly used to authenticate and access Gmail accounts securely. This ...Add your SMTP/email sending address
To enable email alerts and scheduled reports on the system you must input SMTP settings for an email account. You can do this in the Reseller SMTP settings section in the admin panel. Click on ADMIN, and then navigate to RESELLER SETTINGS. Under ...Email History
You can either view Email history at reseller level or client level At reseller level it shows all reseller and clients Email history At client level it is restricted to the client Email history only Click on ADMIN and navigate to Login,Email,Sms ...Configure Inputs, Outputs & Sensors
This article gives an overview of how to configure different types of inputs output and sensors You may want to create a fuel or temperature sensor mapping, add an engine cut off output, or map an input like door open close First you must add the ...The user already exists - how to use the same email address for different logins
You've tried to add a user account, but the platform gave you an error message saying the user already exists: "The user already exists" This happens when the email address already exists on the WLT platform, it might have already been used by ...