Grant Admin Consent

  1. Start the Token app with the appropriate URL:
    1. For a Production/Pilot environment, use https://condecotokenapp.condecosoftware.com
    2. For a UAT/Trial environment, use https://condecouattokenapp.condecosoftware.com
  1. Click Grant Admin Consent and enter your Microsoft 365 Admin account credentials.
  1. Once logged in, review the notes displayed on the popup window about the permissions being requested. Click here to view a table of the permissions you are accepting.
  1. Click Accept and the Microsoft 365 Tenant Permission Portal will display.
  1. Copy the Tenant ID, Organization, and TokenProvider APIKey information by clicking the copy button to the right of each field.
  1. Log out from the token application.
  2. Provide the information copied above to Condeco by your agreed method.

Authorize via Service Account

The service account is used by Condeco to manage your calendars and requires impersonation rights to all Exchange room calendars that will be mapped in Condeco.

  1. Start the Token app with the appropriate URL:
    1. For a Production/Pilot environment, use https://condecotokenapp.condecosoftware.com
    2. For a UAT/Trial environment, use https://condecouattokenapp.condecosoftware.com
  1. Click Authorize via Service Account and enter your Microsoft 365 Service Account credentials to initiate the OAuth grant process.
  2. The Microsoft 365 Tenant Permission Portal will display.

During the setup process, the following access to our Token Provider application is granted:

  • Sign in and read user profiles
  • Read and write calendars in all mailboxes

You can restrict Condeco to access only specific room mailboxes. Use the New-“ApplicationAccessPolicy” PowerShell cmdlet to configure access control. The process is described here Control access to calendars.

Condeco’s Exchange synchronization service uses Graph API to connect to your Microsoft 365 Exchange Service. Whilst permissions requested during authorization are for ‘all mailboxes’ Graph API’s can be used to limit access to specific mailboxes. More information from Microsoft here: https://docs.microsoft.com/en-us/graph/auth-limit-mailbox-access.

What happens next?

After granting consent, send the following information back to your Condeco representative.

  • Service account username
  • Tenant ID
  • Organization
  • TokenProvider APIKey
  • Email address for one room mailbox from your room list

This information is necessary to complete the synchronization between your Condeco platform and your Exchange service.

Once Condeco has completed the onboarding process, you can log in to Condeco as a Global Admin and map your Exchange Rooms on the Room Mapping page.

Need more help with this?
Condeco Support

Was this helpful?

Yes No
You indicated this topic was not helpful to you ...
Could you please leave a comment telling us why? Thank you!
Thanks for your feedback.