This page lists all the applications used by Exclaimer and contains detailed information about each app, including its functionality, whether it is necessary or optional, the permissions it requires, and the reasons behind those permissions.
You can find these apps in the Microsoft Entra Admin Center
Please click on the required options listed below to go through the detailed description:
Application Name |
Exclaimer Cloud Signatures for Office 365 <region> |
|||
|---|---|---|---|---|
Purpose |
Used to synchronize user data from AAD to Exclaimer Cloud. |
|||
Requirement |
Mandatory |
|||
| API Name | Permission Name | Type | Description | Purpose |
| Microsoft Graph | User.Read | Delegated | Sign in and read user profile | Used by the UI to query if the signed-in user is an Admin of Microsoft 365 and expose different setup options to them. |
| Microsoft Graph | Directory.Read.All | Application | Read directory data | Used by the data service to query directory data, which is then stored in an Exclaimer cache. |
| Microsoft Graph | User.Read.All | Application | Read all users' full profiles | To read the user photo. |
| Azure Active Directory Graph | User.Read | Delegated | Enable sign-on and read user's profile | Used by the UI to query if the signed-in user is an Admin of Microsoft 365 and expose different setup options to them. |
| Azure Active Directory Graph | Directory.Read.All | Application | Read directory data | Used by the data service to query directory data, which is then stored in an Exclaimer cache. |
Application Name |
Exclaimer Cloud - Signatures for Outlook Feature |
|||
|---|---|---|---|---|
Purpose |
Used by the Exclaimer Cloud Outlook Add-in and the legacy Exclaimer Cloud Signature Update Agent for user sign-in and authentication. |
|||
Requirement |
Optional. Required for Client-Side signatures. |
|||
| API Name | Permission Name | Type | Description | Purpose |
| Microsoft Graph | User.Read | Delegated | Sign in and read user profile | To confirm that the user is a valid user within your tenancy in O365 + Exclaimer before making the request to the product. |
| Azure Active Directory Graph | User.Read | Delegated | Enable sign-on and read user's profile | To confirm that the user is a valid user within your tenancy in O365 + Exclaimer before making the request to the product. |
Application Name |
Exclaimer Cloud <region> Setup - Please remove after setup |
|||
|---|---|---|---|---|
Purpose |
Used during the setup for Server-Side signatures for O365 and should be removed after the setup is complete. |
|||
Requirement |
Mandatory - can be removed after setup. |
|||
| API Name | Permission Name | Type | Description | Purpose |
| Microsoft Graph | Domain.ReadWrite.All | Application | Read and write domains | To create the domain in your O365 tenancy required for certificate auth and tenant attribution. |
| Azure Active Directory Graph | Domain.ReadWrite.All | Application | Read and write domains | To create the domain in your O365 tenancy required for certificate auth and tenant attribution. |
Application Name |
Exclaimer Cloud Signatures for Office 365 Sent Items <region> |
|||
|---|---|---|---|---|
Purpose |
Used when enabling the Sent Items feature and to provide subsequent access to the user's mailbox to update the sent items. |
|||
Requirement |
Optional. Required for the Sent Items Update feature. |
|||
| API Name | Permission Name | Type | Description | Purpose |
| Microsoft Graph | User.Read | Delegated | Read and write domains |
To allow reading the profile of the signed-in user. Used by the UI to query if the signed-in user is an Admin of Microsoft 365 and can consent on the part of the organization. |
| Azure Active Directory Graph | User.Read | Delegated | Read and write domains |
To allow reading the profile of the signed-in user. Used by the UI to query if the signed-in user is an Admin of Microsoft 365 and can consent on the part of the organization. |
| Office 365 Exchange Online | full_access_as_app | Application | Use Exchange Web Services with full access to all mailboxes | To access the user's mailbox in Exchange Online and update the non-imprinted sent item in the Sent Items folder with the imprinted message. |
|
Office 365 Exchange Online |
Mail.ReadWrite | Application | Read and write mail in all mailboxes | To access the user's mailbox in Exchange Online and update the non-imprinted sent item in the Sent Items folder with the imprinted message. |
Application Name |
Exclaimer Cloud - User Details Editor |
|||
|---|---|---|---|---|
Purpose |
Used to allow the user to sign in to the User Details Editor. |
|||
Requirement |
Optional. Required for the User Details Editor feature. |
|||
| API Name | Permission Name | Type | Description | Purpose |
| Microsoft Graph | Openid | Delegated | Sign users in | To support user sign-in and mapping between Exclaimer subscription and AD user. |
| Microsoft Graph | Profile | Delegated | View user's basic profile | As above |
| Microsoft Graph | User.Read | Delegated | Sign in and read user profile | To confirm if the user is a 365 Global Admin and control access to Settings. |
Application Name |
Exclaimer Cloud - Single Sign-on |
|||
|---|---|---|---|---|
Purpose |
Used to allow the user to use SSO to log in to the portal. |
|||
Requirement |
Optional. Required when using SSO to log in to the portal. |
|||
| API Name | Permission Name | Type | Description | Purpose |
| Microsoft Graph | User.Read | Delegated | Sign in and read user profile | To confirm that the user is a valid user within your tenancy in O365 + Exclaimer before making the request to the product. |
| Azure Active Directory Graph | User.Read | Delegated | Enable sign-on and read user's profile | To confirm that the user is a valid user within your tenancy in O365 + Exclaimer before making the request to the product. |
Application Name |
Exclaimer Cloud Setup |
|||
|---|---|---|---|---|
Purpose |
Used to configure Exchange Online mail routing connectors, transport rules, and IP allow lists required for Exclaimer Cloud email signature processing. |
|||
Requirement |
Mandatory |
|||
| API Name | Permission Name | Type | Description | Purpose |
| Microsoft Graph | User.Read | Delegated | Sign in and read user profile |
To verify that the consenting user is a Global Administrator of the Microsoft 365 tenant. |
| Office 365 Exchange Online | Exchange.Manage | Delegated | Manage Exchange configuration | To create and manage inbound/outbound connectors, transport rules, distribution groups, and hosted connection filter policies required for routing email through Exclaimer Cloud. |