Register Microsoft Exchange Online as the OAuth provider

  • Release version: Australia
  • Updated March 12, 2026
  • 1 minute to read

    • Register Microsoft Exchange Online as the OAuth provider so that your Walk-up Experience instance can request OAuth 2.0 tokens.

    Before you begin

    Role required: admin

    About this task

    Use the information generated during the registration of the application in the Microsoft Azure portal.

    Procedure

    1. Navigate to All > System OAuth > Application Registry.
    2. Open the record Microsoft Exchange Online.
    3. On the form, fill in the fields.
      Table 1. Application Registries form
      Field Description
      Name Name to identify the record. For example, Microsoft Exchange Online.
      Client ID Application ID created during application registration.
      Client Secret Client secret created during application registration.
      OAuth API Script Optional script to customize the request and response.
      Logo URL URL that contains an image to use as the application logo.
      Default Grant Type Grant type used to establish the token. Select Authorization Code.
      Refresh Token Lifespan Time, in seconds, that the refresh token is valid. The default time is 8,640,0000 seconds.
      PKCE required Option to enable public clients to require PKCE for an authorization.
      Note:
      You can use only Authorization Code as the Default Grant type when PKCE is enabled.
      Application Application scope that contains this record.
      Accessible from Application scope that this registry is accessible from.
      Active Option to use the application registry.
      Authorization URL OAuth authorization code endpoint. Enter https://login.microsoftonline.com/<Directory-ID>/oauth2/v2.0/authorize
      Token URL OAuth server token endpoint. Enter https://login.microsoftonline.com/<Directory-ID>/oauth2/v2.0/token
      Token Revocation URL OAuth server token revocation endpoint.
      Redirect URL OAuth callback endpoint. Enter https://<instance-name>.service-now.com/oauth_redirect.do
      Use mutual authentication Option to use mutual authentication for token request and revocation. This option requires a mutual authentication profile to be specified.
      Send Credentials Client credentials in the request.
    4. Select and hold (or right-click) the form header, and click Save.
      A system-generated OAuth entity profile is created and displayed in the OAuth Entity Profiles related list. For example, Microsoft Exchange Online default_profile.
    5. Navigate to System OAuth > Application Registry.
    6. Open the record Microsoft Exchange Online_clientCredentials.
    7. On the form, fill in the fields.
      Table 2. Application Registries form
      Field Description
      Client ID Application ID created during application registration.
      Client Secret Client secret created during application registration.
      Default Grant Type Grant type used to establish the token. Select Client Credentials.
      Token URL OAuth server token endpoint. Enter https://login.microsoftonline.com/<Directory-ID>/oauth2/v2.0/token
      Redirect URL OAuth callback endpoint. Enter https://<instance-name>.service-now.com/oauth_redirect.do
    8. Right-click the form header, and click Save.
      A system-generated OAuth entity profile is created and displayed in the OAuth Entity Profiles related list. For example, Microsoft Exchange Online_clientCredentials default_profile.