This article is for changing an existing Evoko Home install, set up with Microsoft 365 using basic authentication, into using modern authentication.
If you are setting up a new Evoko Home install and want to use modern authentication, please see this article instead.
To use modern authentication with EWS for Office 365, you have to register a custom application in the Azure Active Directory for the Office 365 tenant. When installing Evoko Home you will need both the Tenant ID and Application ID from Azure to complete the configuration with O365.
Please follow the guide below to gather/create that information.
- Configure the Azure app and collect information
- Register App for use with oAuth in EWS
- Change Evoko Home to use modern authentication
Update Evoko Home
Changing from Basic Authentication to Modern Authentication is ONLY SUPPORTED with Evoko Home v2.6 or newer. If you are running an older version than v2.6 you will need to update to to this version first before attempting to change from Basic to Modern. Go to https://download-liso.evoko.se/ to see which version is the most current one.
Update the impersonation management scope.
When switching from Basic Auth to Modern you need to update the Application Impersonation scope. You can follow this link to make sure the Application Impersonation scope as been created correctly: Grant Service Account Impersonation Rights
2-3: Configure the Azure App and Collect Tenant/Application ID.
You can follow this link to make sure the Azure App is configured as well as collect the Tenant/Application ID: Register oAuth with EWS for O365 and Evoko Home
4: Change Evoko Home to use modern authentication
- Open the Evoko Home Global Settings and click Change under the Office 365 service account section:
- Under "Office 365 Authentication Method", click the dropdown and select Modern (oAuth):
- Copy and Paste the Tenant ID and Application ID from the previous steps for the appropriate fields and click “Save”.
- The wizard will now wait for you to log in using the provided URL (https://microsoft.com/devicelogin) and provided code. It's important that you log on using the service account used with Evoko Home.
- On the provided URL, enter the code from the wizard and click Next
- Once you sign in using the service account credentials, it will prompt for the consent dialog. This happens only for the first login to this application. Subsequent login remembers the consent. Review the dialog and click "Accept".
- You should now see the following screen which informs you to safely close this window.
- Success! You have now completed the setup with Modern Auth!