Add a Microsoft 365 message source

Overview

📘
Microsoft 365 Global Admin Required
You must be a Global Admin in Microsoft 365 to authorize access for all users on your domain.

You can add a Microsoft 365 message source when setting up your Sublime organization or by going to Admin > Message Sources > New message source in the Sublime dashboard and selecting Microsoft 365.

Once you select the option to add a Microsoft 365 message source, the next steps will depend on whether you're using Sublime Cloud or self-hosting Sublime.

Sublime Cloud (Fully Managed)

If you're using Sublime Cloud, simply follow the prompts to authorize access on behalf of your organization.

Self-Hosted

In order for your self-hosted instance of Sublime to access mail from your tenant programmatically, you must create a new Azure app and authorize it for access. This is required so that only you have access to your mail, and not anyone else, including the Sublime team.

After completing the steps below, you'll copy over the following to add the message source in Sublime:

Application (client) ID
Directory (tenant) ID
Client secret

Steps

Login to https://portal.azure.com
Search for App registrations

Click + New registration

Enter "Sublime Platform" for the app name. Leave the other defaults (Single-tenant, no Redirect URI). Click "Register".

Copy the application (client) ID and the Directory (tenant) ID over to the Sublime Platform setup

Click View API permissions and then + Add a permission

Select Microsoft Graph
Select Application permissions
Choose Mail.ReadWrite, User.Read.All, Group.Read.All, and Domain.Read.All
Click Add permissions