Microsoft Outlook
Microsoft Outlook is a web-based calendar and email application offered as part of the Microsoft 365 suite. Outlook allows you to create events, send and receive email messages, and collaborate with other members of your org.
Outlook is a popular integration with Tonkean for email-centric workflows or creating calendar events.
Authenticate with Outlook
Tonkean integrates with Outlook in two ways: connecting as an individual user or using an Entra enterprise application.
User authentication - Authenticate as an individual user, granting Tonkean access to all calendars and inbox folders for that user.
Application authentication - Authenticate using an Entra ID application, leveraging scopes (permissions) to specify which email inbox and folders Tonkean has access to.
Application authentication is currently only available to users with a single-tenant deployment. If you're unsure what kind of deployment you have, contact Tonkean Support or your designated account manager.
Prerequisites
To use application authentication, you must have an enterprise application. To create an enterprise application in Entra, refer to Add an enterprise application.
Authenticate with Outlook as a User
To use delegated user authentication to connect Outlook as a data source, follow the steps below:
In a separate tab, log into the Microsoft Account you want to connect to Tonkean.
In Tonkean, select the main nav icon,
, in the upper left and select Enterprise Components. The Enterprise Components screen displays.Select + New Data Source in the upper right.
Select Cloud Application. The Add New Data Source window displays.
Enter "Outlook" in the search field, then select Outlook. The New Outlook Connection window displays.
Select Create a new connection. The Set Up Data Source window displays.
In the Authentication Type field, select User Authentication. If desired, select the Collect Message, Attachments & Folders checkbox. This option enables Tonkean to collect these entities. By default, Tonkean only collects Calendars and Events.
Select Authenticate with Outlook. The Microsoft authentication window displays and the user is signed in.
If you are not signed into your Microsoft account, you must sign in on the Microsoft authentication window. Or, if you are signed into a Microsoft account that you do not want to connect to Tonkean, you must sign out of that account prior to authenticating.
If desired, you can add a User ID or Principal Name if you want to connect a shared mailbox. This step is optional.
Select or search for the Mail Folder to connect Tonkean to. To enable Tonkean to view all messages, select the root folder, Inbox.
When finished, select Save.
Your individual user Outlook account is connected to Tonkean. Be sure to give the relevant solutions access to the new data source.
Authenticate with Outlook with an Application
To use application authentication to connect Outlook as a data source, follow the steps below:
Application authentication is the recommended option for most users as it gives admins more control over which data is shared with Tonkean.
Add and Configure an Enterprise Application in Entra ID
Before connecting your application
If you don't have an enterprise application in your Entra ID tenant, create one.
When registering the application, in the Supported account types section, select Accounts in this organizational directory only.
In the relevant enterprise application, add the following scopes as Application permissions (not Delegated permissions):
Mail.ReadWriteMail.SendCalendars.ReadWrite(Include this scope only if you want to Tonkean to collect the Calendar entity)
For more information about limiting access to specific mailboxes, see Limiting application permissions to specific Exchange Online mailboxes.
Authenticate with Outlook in Tonkean
With your enterprise application configured in Entra ID, you can authenticate with Outlook in Tonkean using that application. To authenticate with Outlook, follow the steps below:
In Tonkean, select the main nav icon,
, in the upper left and select Enterprise Components. The Enterprise Components screen displays.Select + New Data Source in the upper right.
Select Cloud Application. The Add New Data Source window displays.
Enter "Outlook" in the search field, then select Outlook. The New Outlook Connection window displays.
Select Create a new connection. The Set Up Data Source window displays.
In the Authentication Type field, select Application Authentication. If desired, select the Collect Message, Attachments & Folders checkbox. This option enables Tonkean to collect these entities.
Enter your enterprise application Tenant ID.
To navigate to Entra ID to locate your Tenant ID, select here below the Tenant ID field.
Enter your User ID or Principal Name. If no value is provided for this field, Tonkean does not collect any data but you can still use Outlook data actions.
Select or search for the Mail Folder to connect Tonkean to. To enable Tonkean to view all messages, select the root folder, Inbox.
This dropdown only displays if you selected the Collect Messages, Attachments & Folders checkbox.
When finished, select Save.
Your Outlook account is connected to Tonkean through application authentication. Be sure to give the relevant solutions access to the new data source.