Minimum scope

The roles and permissions or minimum scope required by a service account configured for RecoveryManager Plus are listed below.

1. Roles and permissions required by the service account.

The minimum scope required by a service account configured for RecoveryManager Plus should be a member of Exchange administrator role.

2. Roles and permissions required by the Azure AD application.

Module Role Name Permission Scope
Exchange Online Office 365 Exchange Online EWS.AccesAsUser.All Backup and restore mailboxes
full_access_as_app Use Exchange Web Services to backup and restore mailboxes
SharePoint & OneDrive SharePoint Sites.FullControl.All Backup and restore sites
User.ReadWrite.All Read and write the full set of profile properties, reports, and managers of users
Azure AD Azure Active Directory Graph Domain.ReadWrite.All Read and write all domain properties
Microsoft Graph AppRoleAssignment.ReadWrite.All Manage app permission grants and app role assignments
Copyright © 2023, ZOHO Corp. All Rights Reserved.
Get download link