Configure Exchange Online Upload/Collection Using OAuth Authentication

To enable OAuth and configure Exchange Online for use of upload/collection functionality, you will need to register the application with your Microsoft Entra ID. You will also need to give permissions for the application during this process. Specifically, the application needs permission to use Office 365 Exchange Online API to access EWS (Exchange Web Services).

Review the information below to complete this process.

Register your application with Microsoft Entra ID

To register your application with Microsoft Entra ID, follow the steps below:

  1. Go to Microsoft Entra ID Admin Center.

  2. Go to App Registrations and select New Registration.

  3. Complete the registration form.

    1. Enter a name. This could be "ZyLabOneExchangeCollector" or another application name that seems appropriate.

    2. Decide the account type. Determine if the application should be single tenant (for this organization only) or multitenant. Typically single tenant is chosen here.

    3. The redirect URI is not needed.

    4. Click Register.

  4. You’ve now created a registration. From here, go to Certificates and secrets.

  5. Select New Client Secret.

  6. Enter a description and a duration. Click Add.

  7. You will now be shown a screen with your client secret (value field). Please copy this value now as this is the ONLY time it will be displayed.

  8. Click on API Permissions. Then click Add Permission.

  9. Go to APIs my organization uses.

  10. Search for Office and select Office 365 Exchange Online.

  11. Select Application permissions.

  12. Search for full and select full_access_as_app. Click Add permissions.

  13. Click Grant Consent for (your companyname).

  14. Select Yes.

  15. You will now see that the consent was granted.

  16. This finishes the creation of the App Registration that’s needed for the ZyLAB Exchange Collector. Please save the TentantID, AppID and ClientSecret for the next section.

Modify the collector configuration

  1. Create a backup and then edit the exchange collector configuration.

    Program Files (x86)\ZyLAB\EDiscovery\Ediscoveryservice\Assemblies\Performers\ZyLAB.EDiscovery.Collectors.Exchange\ZyLAB.EDiscovery.Collectors.Exchange.dll.xml

  2. Modify the Default configuration (we can no longer use basic authentication now).

  3. Replace the AppID, TenantID and ClientSecret with what you saved earlier.

    <configuration id="Default">

    <settings>

    <!-- Legacy Auth-->

    <Domain> </Domain>

    <LoginAccount> </LoginAccount>

    <LoginPassword> </LoginPassword>

    <!-- OAuth -->

    <OAuth>true</OAuth>

    <!-- AppId -->

    <AppId>xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx</AppId>

    <!-- TenantId -->

    <TenantId>xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx</TenantId>

    <!-- Client Secret -->

    <ClientSecret>xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx</ClientSecret> <!-- Exchange2010, Exchange2010_SP1 -->

    <ExchangeVersion>Exchange2013_SP1</ExchangeVersion> <Folders>MsgFolderRoot,RecoverableItemsRoot,ArchiveMsgFolderRoot,ArchiveRecoverableItemsRoot</Folders><ExchangeWebServicesURL>https://outlook.office365.com/EWS/Exchange.asmx</ExchangeWebServicesURL>

  4. Save the file.

  5. Now open up Legal Processing.

  6. Go to settings > processing rules.

  7. Click Refresh System Performers (or regenerate defaults if you’re on 6.9).

  8. Save and close.

  9. Now, when you create a new matter, it will use the new configuration.