Skip to content

Configure Email Provider

This document explains the steps to configure Asgardeo to send emails during multiple email-related customer identity and access management tasks such as email OTP, email notifications, and account recovery.

Follow the steps given below to enable the email sender per organization.

  1. On the Asgardeo Console, go to Notification Channels > Email Provider.
  2. Provide the required details.

Configure Email Provider

  1. Click Update.

Supported Providers

Configuring Gmail as the email provider

If you use a Gmail account as the from_address, you must create an App Password. After you get an App Password from Google, update the password.

Configuring Microsoft 365 Exchange Online as the email provider

Before you start

  • You must have a Microsoft 365 account with an active subscription.
  • Ensure your Microsoft 365 subscription is licensed to send emails through Exchange Online.
  • You need at a minimum a paid subscription to Microsoft Business Basic plan to use the SMTP Auth for Exchange Online.
  • Emails will be sent from Asgardeo to your SMTP provider. Your ports should be open and allow inbound connections from specific Asgardeo IP addresses.

Configure Microsoft 365

Application Configuration and Permissions

  1. Register a Azure Active Directory Application resource if you currently do not have one.
  2. Navigate to your Active Directory Application resource.
  3. Select Services > App registrations, and then select the application you will be using to send emails.

  4. Configure the required application permissions by navigating to Manage > API permissions. Please refer Application permissions for SMTP

    API Permission

Register service principals in Exchange

Enable SMTP AUTH for specific mailboxes

Retrieve required email provider configurations

  • Navigate to the Application Overview of your Azure Active Directory Application and retrieve the Application (client) ID.
  • Navigate to Manage > Certificates & secrets and collect the Value to create an application secret.
  • Navigate to Overview > Endpoints and copy the OAuth 2.0 token endpoint (v2) URL.

Configure SMTP settings in Asgardeo

  • Go to Notification Channels > Email Provider.
  • Provide the From email address and other relevant details. Click on Client Credentials from the Authentication type dropdown.
  • Provide the required details retrieved from the previous step.

NOTE: The scope required for Microsoft 365 Exchange Online is https://outlook.office365.com/.default and the token endpoint URL should be in the format of https://login.microsoftonline.com/{tenant_id}/oauth2/v2.0/token.

Configure Email Provider

  • Click Update to save the configurations.