Cisco Cisco Email Security Appliance C680 ユーザーガイド
21-28
User Guide for AsyncOS 10.0 for Cisco Email Security Appliances
Chapter 21 Automatically Remediating Messages in Office 365 Mailboxes
Performing Remedial Actions on Messages Delivered to End Users When the Threat Verdict Changes to Malicious
Registering Your Appliance as an Application on Azure AD
Office 365 services use Azure Active Directory (Azure AD) to provide secure access to users' mailboxes.
For your appliance to access the Office 365 mailboxes, you must register your appliance with Azure AD.
The following are the high level steps you need to perform to register your appliance with Azure AD.
For detailed instructions, see Microsoft documentation
(
For your appliance to access the Office 365 mailboxes, you must register your appliance with Azure AD.
The following are the high level steps you need to perform to register your appliance with Azure AD.
For detailed instructions, see Microsoft documentation
(
).
Before You Begin
.
Procedure
Step 1
Sign into the Azure Management Portal using your Office 365 business account credentials.
Step 2
Add a new application to the directory linked to your Office 365 subscription. While adding a new
application, make sure that you:
application, make sure that you:
•
Select the application type as WEB APPLICATION AND/OR WEB API.
•
Specify the following parameters:
–
Sign-on URL. This is the URL where users can sign-in and use your appliance, for example,
https://<company_domain.com>/ManualRegistration
.
–
App ID URI. A unique URI that Microsoft Azure AD can use for your appliance, for example,
https://<company_domain.com>
.
Step 3
Configure the applications and permissions that the application requires. Under the Configure tab of the
newly created application, add Office 365 Exchange Online as an application and set the following
permissions:
newly created application, add Office 365 Exchange Online as an application and set the following
permissions:
•
Application Permissions
–
Send mail as any user
–
Read and write mail in all mailboxes
–
Read mail in all mailboxes
–
Use Exchange Web Services with full access to all mailboxes
•
Delegated Permissions
–
Send mail as a user
–
Read and write user mail
–
Read user mail
–
Access mailboxes as the signed-in user via Exchange Web Services
Step 4
Secure the communication between the Office 365 services and the appliance by updating the application
manifest with the key credentials from the public key certificate. Perform the following steps:
manifest with the key credentials from the public key certificate. Perform the following steps:
a.
Using a Windows PowerShell prompt, get the values for
$base64Thumbprint
,
$base64Value
, and
$keyid
from the public key certificate. See the example below.