Configure Sage 100 OAuth E-mail settings

Summary

How to configure Sage 100 OAuth E-mail settings for use with a Microsoft 365 App Registration.

CAUTION:

Sage Customer Support can't assist setting up OAuth Authentication to connect to various SMTP Mail Servers
This information is to assist Sage 100 Business Partners or Customers familiar with their SMTP (Mail) Server
While Sage can't provide guidance for all SMTP Server configurations, the following example is only for demonstration
Consult with your Sage 100 Business Partner or your administrator if you aren't familiar with SMTP Server

Sage 100 2021.4, Sage 100 2022.1 or higher
If using Advanced or Premium, make sure you install LM7101T (2022.1) or LM7012T (2021.4)
Sage 100 2022.2 and Sage 100 2021.5 include these hotfixes
Make sure .NET 4.8 exists on the computer. How to determine if .NET 4.8 is present on the computer

Log on to your Microsoft Azure Portal account (portal.azure.com) as the admin user.
Go to Azure Active Directory, App Registrations and click New Registration.

- Enter the Display Name: (user-defined)
- Select Who can use: Single tenant
- Enter the Redirect URI: (Platform = Public client/ native) https://localhost

- Tip: copy the Application (client) Id and save it for later reference
- Tip: click Endpoints and copy the Authorization endpoint (v2) and the Token endpoint (v2) for later use. Then Close Endpoints

Click API permissions, Add a permission, Select Microsoft Graph and then Delegated Permissions.
Select the offline_access, SMTP.Send permissions, then click Add permissions.

- There are three permissions at this point: offline_access, SMTP.Send, and User.Read

Log on to www.office.com as the admin user.
Type admin in the search field and select the Admin app in the search results.
In the Admin Center, click Users, Active Users, and select the admin user to create the App Registration.
Click Mail, Manage email apps.
Select the 'Authenticated SMTP' option, and save the changes.

Open the E-mail tab in Sage 100, Library Master, Company Maintenance, and select the OAuth Authentication Method.
Enter the Address: smtp.office365.com.
Accept default Port: 587.
Accept default SMTP Encryption: TLS.
Enter your User ID: (the email or admin user used to create the App Registration).
Enter the Client ID for this app registration.
Microsoft 365 doesn't require the Client Secret.
Enter the Auth endpoint for this app registration.
Enter the Token endpoint for this app registration.
Enter the Scope: https://outlook.office.com/SMTP.Send offline_access.
Enter the Redirect URL used above: https://localhost.
Accept the default Code Challenge Method: S265.
Click Accept to save the company record and then click 'Test E-mail' to initiate the authentication process.

When you first set up email, a window opens asking for your username and password.
After login, the system uses a token and a refresh token to send emails without asking again.
This automatic sending continues as long as you send emails at least once every 90 days.
If the email is inactive for 90 days, the refresh token expires and the login window opens again.
You’ll need to enter your username and password again to restart email sending.
This refresh token expiration is specific to Microsoft 365 and varies with other providers.

NOTE: Open the Company Maintenance and check the E-mail tab

If your e-mail provider and/ or the user ID doesn't change: review and verify the 'From' e-mail address in Paperless Office, Setup, then Form Maintenance.
If your e-mail provider and/ or the user ID changed: make sure the 'From' e-mail address in Paperless Office, Setup, and Form Maintenance are valid aliases.