This page lists all the applications used by Exclaimer and contains detailed information about each app, including its functionality, whether it is necessary or optional, the permissions it requires, and the reasons behind those permissions.
You can find these apps in the Microsoft Entra Admin Center
Please click on the required options listed below to go through the detailed description:
Application Name |
Exclaimer Signatures for Office 365 <region> |
|||
---|---|---|---|---|
Purpose |
Used to synchronize user data from AAD to Exclaimer |
|||
Requirement |
Mandatory |
|||
API Name |
Permission Name |
Type |
Description |
Purpose |
Microsoft Graph |
User.Read |
Delegated |
Sign in and read user profile |
Used by the UI to query if the signed-in user is an Admin of Microsoft 365 and expose different setup options to them. |
Microsoft Graph |
Directory.Read.All |
Application |
Read directory data |
Used by the data service to query directory data which is then stored in an Exclaimer cache. |
Microsoft Graph |
User.Read.All |
Application |
Read all users' full profiles |
Used to read the user photo. |
Azure Active Directory Graph |
User.Read |
Delegated |
Enable sign-on and read user's profile |
Used by the UI to query if the signed-in user is an Admin of Microsoft 365 and expose different setup options to them. |
Azure Active Directory Graph |
Directory.Read.All |
Application |
Read directory data |
Used by the data service to query directory data, which is then stored in an Exclaimer cache. |
Application Name |
Exclaimer - Signatures for Outlook Feature |
|||
---|---|---|---|---|
Purpose |
Used by the legacy Cloud Signature Update Agent for user sign-in and auth |
|||
Requirement |
Optional. Required for Client-Side signatures |
|||
API Name |
Permission Name |
Type |
Description |
Purpose |
Microsoft Graph |
User.Read |
Delegated |
Sign in and read user profile |
Used to confirm that the user is a valid user within your tenancy in O365 + Exclaimer before making the request to the product. |
Azure Active Directory Graph |
User.Read |
Delegated |
Enable sign-on and read user's profile |
Used to confirm that the user is a valid user within your tenancy in O365 + Exclaimer before making the request to the product. |
Application Name |
Exclaimer <region> Setup - Please remove after setup |
|||
---|---|---|---|---|
Purpose |
Used during the setup for Server-Side signatures for O365 and should be removed after the setup is complete |
|||
Requirement |
Mandatory - can be removed after setup |
|||
API Name |
Permission Name |
Type |
Description |
Purpose |
Microsoft Graph |
Domain.ReadWrite.All |
Application |
Read and write domains |
Used to create the domain in your O365 tenancy required for certificate auth and tenant attribution. |
Azure Active Directory Graph |
Domain.ReadWrite.All |
Application |
Read and write domains |
Used to create the domain in your O365 tenancy required for certificate auth and tenant attribution. |
Application Name |
Exclaimer Signatures for Office 365 Sent Items <region> |
|||
---|---|---|---|---|
Purpose |
Used when enabling the Sent Items feature and to provide subsequent access to the user's mailbox to update the sent items. |
|||
Requirement |
Optional. Required for Sent Items Update feature |
|||
API Name |
Permission Name |
Type |
Description |
Purpose |
Microsoft Graph |
User.Read |
Delegated |
Read and write domains |
Allows reading the profile of the signed-in user. Used by the UI to query if the signed-in user is an Admin of Microsoft 365 and can consent on the part of the organization. |
Azure Active Directory Graph |
User.Read |
Delegated |
Read and write domains |
Allows reading the profile of the signed-in user. Used by the UI to query if the signed-in user is an Admin of Microsoft 365 and can consent on the part of the organization. |
Office 365 Exchange Online |
full_access_as_app |
Application |
Use Exchange Web Services with full access to all mailboxes |
Access the user's mailbox in Exchange Online and update the non-imprinted sent item in the Sent Items folder with the imprinted message. |
Office 365 Exchange Online |
Mail.ReadWrite |
Application |
Read and write mail in all mailboxes |
Access the user's mailbox in Exchange Online and update the non-imprinted sent item in the Sent Items folder with the imprinted message. |
Application Name |
Exclaimer - User Details Editor |
|||
---|---|---|---|---|
Purpose |
Used to allow the user to sign in to User Details Editor |
|||
Requirement |
Optional. Required for User Details Editor feature |
|||
API Name |
Permission Name |
Type |
Description |
Purpose |
Microsoft Graph |
Openid | Delegated | Sign users in | To support user sign-in and mapping between Exclaimer subscription and AD user. |
Microsoft Graph |
Profile | Delegated | View user's basic profile | As above |
Microsoft Graph |
User.Read | Delegated | Sign in and read user profile | Used to confirm if the user is a 365 Global Admin and control access to Settings. |