Hi Everyone,
I have a in-house .net app which needs to connect to a Office365 mailbox to scrape emails (read and delete).
I don't want the app to use legacy authentication (username + password).
I know I can leverage AZ AD Enterprise Apps and grant permissions and then link the Enterprise app to the .net app.
My question is which Microsoft Graph permissions should I grant?
I looked in there and I think I need:
Mail.ReadWrite Read and write access to user mail Allows the app to create, read, update, and delete email in user mailboxes. Does not include permission to send mail
Can I grant this permissions to a single account?
Are there other defaults permissions required?
Thanks, M