Connect to Outlook

Required permissions for setup

  • The user setting up this data source must be the Global Admin.

Register a new app

  1. Navigate to the App registrations after logging into the Azure portal. Select App registrations > New registration.
  2. On the Register an application page, register an app with the following: | Field | Value | |----------------------|---------------------------------| | Name | Glean for Outlook Domain-Delegated | | Supported account types | Accounts in this organizational directory only (Single tenant) | | Redirect URI | (Leave this field blank) |
  3. Click Register.

Configure permissions

  1. In the left sidebar of the app overview page, click on API Permissions under Manage.
  2. Under Add a permission > Microsoft Graph > Application permissions, add the following permissions: Mail.Read Calendars.Read
  1. Ensure you are signed into Azure as a Global, Application or Cloud Application Administrator.
  2. Use the search box to navigate to Enterprise applications. Select the Glean app you just created from the list of applications.
  3. Click on Permissions under Security. Review the permissions shown, and then click Grant admin consent.

Generate secret

  1. Navigate back to Azure Active Directory > Manage > App registrations and click on the app you created earlier. Then click on Manage > Certificates & secrets in the left sidebar.
  2. Click on New client secret. Enter a description and select 24 months for expiry time, then click Add.
  3. Under Client secrets, copy the Value (not the Secret ID) you generated and enter it in Glean as the Client secret. The Value will only be shown once.

Upload keys

  1. Scroll to the top of the left sidebar and click Overview.
  2. Copy the following content from the center Essentials panel and enter it in Glean:
  • Application (client) ID
  • Directory (tenant) ID

Additional Steps

  1. Fill out the email used for setting up the application, which will only be used to validate the setup. The email must have exchange enabled and mailbox accessible by the application. Any user email with Outlook enabled will work to validate the configuration.

Manage users (optional)

  1. To limit who can connect to Outlook, use the search box to navigate to Enterprise Applications.
  2. Select the Glean for Outlook Domain-Delegated app you just created, then in the left navigation click on Properties under Manage.
  3. Toggle User assignment required? to Yes.
  4. Go to Users and groups in the left navigation and add whichever users and groups you’d like to access Outlook.