BACK TO INTEGRATIONS

Microsoft (Tenant)

oauth2

Microsoft tenant-specific OAuth2 authentication allows secure, delegated access to Microsoft 365 services and Microsoft Graph API resources within a specific organizational tenant. This integration uses the OAuth 2.0 authorization code flow with tenant isolation, ensuring that applications can only access resources within the designated tenant while maintaining backward compatibility with legacy basic authentication alternatives.

This integration empowers AI agents to authenticate users securely within your Microsoft 365 tenant, enabling them to access organizational resources such as email, calendar, SharePoint, Teams, and other Microsoft services without storing user passwords. Agents can perform delegated tasks on behalf of authenticated users while respecting organizational consent and permission boundaries.

Capabilities

  • Tenant-specific OAuth2 authorization code flow authentication
  • Delegated user permissions with Microsoft Graph API access
  • Support for organizational account isolation and multi-tenant scenarios
  • Refresh token management for long-lived application sessions
  • PKCE support for enhanced security in mobile and SPA applications
  • Access to Microsoft 365 services including Mail, Calendar, SharePoint, Teams, and OneDrive

Resources

About

Auth Type
oauth2
Documentation
https://learn.microsoft.com/en-us/entra/identity-platform/v2-oauth2-auth-code-flow