Configure OAuth profile to use a client ID and secret for token generation

  • Release version: Australia
  • Updated March 12, 2026
  • 1 minute to read

    • Configure an OAuth profile using a client ID and client secret to create an email account for using Microsoft Graph (send) in your email account type.

    Before you begin

    Create an Microsoft Azure account to configure OAuth profile.

    Complete the set up steps using your Microsoft Azure Developer account. See the Microsoft Azure product documentation for instructions on creating and configuring custom applications.

    Role required: admin and Microsoft Azure portal administrator

    Procedure

    1. Log in to the Microsoft Azure registration portal with your organization credentials.
      For more information, see the Microsoft Azure registration portal documentation.
    2. Register a new custom application by filling in the application name, supported account type, and redirect URI, and select Register.
      Note:
      Enter the redirect URI in the following format: https://<instance>/oauth_redirect.do.
      An overview of the application's basic information is displayed.
    3. Copy the client ID to a text file.
      You will use this ID and the client secret value generated in the next steps to register the app as a third-party OAuth provider on your ServiceNow instance. You use the application ID as the client ID when you connect the application to your instance.
    4. Enable the Mail.ReadWrite permission.
      1. In Microsoft Azure, navigate to Manage > API permissions.
      2. Select Add a permission.
      3. Select the Microsoft Graph tile.
      4. Select Application Permissions.
      5. In the Select permissions field, enter Mail.Send.
      6. Select the Mail.Send check boxes.
      7. In the Select permissions field, enter Mail.ReadWrite.
      8. Select the Mail.ReadWrite check boxes.
      9. Select Add permissions.
    5. Select Grant admin consent for <your organization name>.
    6. Select Yes to confirm.
    7. Add a client secret.
      1. In Microsoft Azure, navigate to Manage > Certificates & secrets.
      2. Select New client secret.
      3. Provide a description and an expiration date and select Add.
    8. Copy the value (secret value) to a text file.
    9. Navigate to Overview > Endpoints and copy the OAuth 2.0 token endpoint (v2) to a text file.