O365 started enforcing Modern Authentication (OAuth2) back in October 2022. You can install the OAuth2 plugin from our website and follow this guide:
Also, you don’t need to hint SSL/TLS if you use a standard port as we autodetect and use the appropriate method. For IMAP over SSL simply use outlook.office365.com and port 993.
Cheers.
Thank, KevinTheJedi.
I'm working through it now (albeit without success) so far.
much appreciated!
/mh
Hi - after going through the process I have two entries in the instances of the Oauth2 plugin..
Should I have two?
Also, I never got to the consent form in the process.....is there a way to do that via Azure portal, or is that something that should occur dynamically as a part of login?
OK - I'm now getting the message "Email Mismatch: Expecting Authorization for it@<domain> not mhayden@<domain>"
I blew away the app registration I did as my own account which I authorized, and created a whole new one based on an it@<domain>.
How do I remove the old authorization from osticket? Do I need to blow away the oauth phar file and remove all of hte config and start from scratch again?
I beleive that you fcan just delete the email from osTicket and it will delete everything associated with the email.
Then you can re-add the email in osTicket.
Make sure that you follow the docs?
https://docs.osticket.com/en/latest/Guides/OAuth2%20Guide.html
Email Mismatch: Expecting Authorization for it@<domain> not mhayden@<domain>
This means when it took you to MS to authenticate you authenticated as the wrong account. You should login as it@ not your personal account.
Cheers.
Seems to have worked, thank you! It had to time out, though - took about 24 hours.
I see there's some discussion of a need for a cron job to pull email in from MS?
If you want automatic polling, yes. You can follow the guide here:
Cheers.
Hello @KevinTheJedi
Got polling set up and it appears to be working.
Thank you very much for your help.
/mh
Aargh.
It seems to not be working again.
This is what's in root crontab:
*/5 * * * * www-data /usr/bin/php /var/www/html/osticket/upload/api/cron.php
(using www-data account rather than nobody; is that ok?)
thanks
And it works again. Odd. But I'll take it.
It might be better to edit www-data's crontab directly with: crontab -e -u www-data
Cheers.
Hmm. I'm doing it in root's crontab, but I'll consider that change.
It's working now so I'm loath to modify it.
thanks!
The user name that you use indicates what user the task is executed as.
If your webserver runs as www-data then that is the username that you should use.
Generally speaking you probably want to do it using www-data.
