Hey fellow admins, I'm facing a situation that seems tricky. Our company wants to use a shared mailbox to send emails from a third-party service, but the service wants to authenticate using OAuth. The problem is that the shared mailbox doesn't seem to support MFA or credentials for OAuth authentication, even if I use a user with delegation access to that mailbox. I'm guessing the only real solution might be to stick with a licensed user account that has MFA enabled instead. What do you all think? Is there any way around this?
2 Answers
You might want to consider using the Graph API with application permissions, which should allow you to send emails from the shared mailbox without needing MFA for the mailbox itself. It’s a workaround that can simplify the process!
When it comes to using a shared mailbox, you need to think about your specific use case. If it's just one user sending emails, that's pretty straightforward. But if you have multiple users, it gets trickier. Shared mailboxes aren’t designed for direct login, so it might not be the best option. If the third-party service can configure your DNS records, that could work better for sending emails from your domain. Have you thought about what the real purpose is? Clarifying that might help find a better solution.
Thanks for your input! Sorry for not providing more context earlier. Essentially, the third-party app is used to send out marketing flyers to our employees. It requests permission through Microsoft Entra to send emails on behalf of the users, but unfortunately, there’s no DNS or mail connector setup available.