Product DocsMenu

Microsoft Exchange Online With Azure AD Users (Cloud-Based or Synced/Federated) Source Quick Setup

CES 7.0.7814+ (August 2015)

This topic outlines the required components and parameters to create a source for an Exchange Online deployment where:

  • All mailboxes are stored in Exchange Online

  • Mailbox owners are:

    • Cloud-based users that can be listed using Azure AD.

      AND/OR

    • Federated users synced in Azure AD.

Parameters not mentioned should be left to their default values.

  1. Validate that your environment meets the requirements:

  2. Create a user identity with a dedicated Windows account that has access to all the Exchange content that you want to index. [more]

    Key parameter Value
    Name You must name your user identity.
    User

    An Office 365 Administrator account that can access your Windows Azure management portal.

    Password The corresponding password.
  3. In the Windows Azure management portal, create an Azure AD application to authorize the Coveo connector to access the Exchange Online mailboxes of your Azure AD users. [more]

  4. Depending on the way your users authenticate in your Coveo search interface, create a security provider to resolve Azure AD users. [more]

    • When authenticating with an email:

      Key parameter Value
      Name You must name your security provider.
      Security Provider Type Email
      Security Provider (Optional) The security provider to map Email identities to another identity type.
    • When authenticating with an AD account, use the default Active Directory security provider or create a new one:

      Important: The User Principal Name (UPN) must match the email address for all users.

      Key parameter Value
      Name You must name your security provider.
      Security Provider Type Active Directory
      User Identity The user identity containing an account that has access to the desired domain or (none) when you want to use the CES service account.
      Security Provider (Optional) The security provider to map Email identities to another identity type.
  5. Create an Exchange source. [more]

    Key parameter Value
    Name You must name your source.
    Source Type Exchange (WebServices)
    Addresses https://outlook.office365.com/
    AzureAdOAuth2TokenEndpoint (hidden parameter) The endpoint used to obtain an access token using OAuth 2.0 (see Authorizing the Coveo Connector to Access the Exchange Online Mailboxes of Your Azure AD Users).
    AzureAdGraphApiEndpoint

    (hidden parameter)

    The endpoint used by the Azure AD Graph API to access directory data in the Windows Azure AD directory (see Authorizing the Coveo Connector to Access the Exchange Online Mailboxes of Your Azure AD Users).
    AzureAdClientId

    (hidden parameter)

    The Azure AD client ID you previously obtained (see Authorizing the Coveo Connector to Access the Exchange Online Mailboxes of Your Azure AD Users).
    AzureAdClientKey

    (hidden parameter)

    The Azure AD client key you previously obtained (see Authorizing the Coveo Connector to Access the Exchange Online Mailboxes of Your Azure AD Users).
    OwnerOnlySecurity

    (hidden parameter)

    true
    Exchange Security Provider The security provider you just created.
    Authentication The user identity you created.
People who viewed this topic also viewed