Email server settings

    The email server settings have to be configured for you to receive product notifications via email. You can set up the email server using either of the following methods in ADManager Plus:

    Configure the email server using SMTP

    SMTP email server connection can be authenticated using OAuth.

    To configure the email server using SMTP, choose any one of the following authentication types and collect the required credentials:

    SMTP email server configuration using OAuth with Microsoft Azure as your email provider

    If you are using OAuth with Microsoft Azure as your mail provider, find the Azure tenant ID, Client ID, and Client Secret using the steps listed below:

    1. Log in to the Azure Portal.
    2. Click Microsoft Entra ID from the Azure services section.
    3. Under Manage, click App Registrations.
    4. Click + New Registration.
    5. Enter a suitable name for the application and specify who can access this application in Supported account types. By default, this is set to Accounts in this organizational directory only (Single tenant)—leave it as is unless you require a different configuration.
    6. In the Redirect URI field, select Web from the drop-down list and choose one of the following:
      • Paste the following link:
        https://identitymanager.manageengine.com/api/public/v1/oauth/redirect
      • Add the localhost redirect API in the following syntax:
        protocol://localhost:port_number/context_if_any/RestAPI/WC/OAuthSetting For example, http://localhost:8082/RestAPI/WC/OAuthSetting.
        Note: If you have only added localhost as the Redirect URI, you must access the product using localhost to configure the email server.
      • Click Register.
      • Copy the Application (client) ID and Directory (tenant) ID displayed on the registration overview page.
      • In the left pane, navigate to Manage > Certificates & secrets > Client secrets.
      • Click + New client secret, provide a description and secret expiration value, and click Add.
      • Copy the key value.

    Paste the copied Client ID, Tenant ID, and Client Secret during email server configuration.

    SMTP email server configuration using OAuth with Google as your email provider

    If you are using OAuth with Google as your mail provider, find the Google Workspace Client ID and Client Secret using the steps listed below:

    1. Log in to the Google Developer Console.
    2. Select an existing project or click Create project to create a new project.
    3. Enter a project name and in the Location field, click Browse, and select your organization.
    4. Click Create.
    5. In the left pane under APIs & Services,, click Library.
    6. From the list of available APIs, select Gmail API and click Enable.
    7. In the left pane under APIs & Services, click OAuth consent screen.
    8. In the App Information section, enter the Application name and User support email and click Next.
    9. Select the Audience Type. If you don't have a Google Workspace account, select External as the user type and click Create.
    10. Provide the Application Name, App Logo, Support email of your help desk, and Developer contact information, and click Save & Continue.
    11. Click Add or Remove Scopes, choose Gmail API (https://mail.google.com/), and click Update. Then click Save & Continue.
    12. In the left pane, click Credentials > Create Credentials > OAuth Client ID.
    13. Select Web Application as the Application Type and enter a suitable name for the client.

      14. In the Authorized Redirect URIs, choose one of the following:
      https://identitymanager.manageengine.com/api/public/v1/oauth/redirect

      • Add the localhost redirect API in the following syntax:
        protocol://localhost:port_number/context_if_any/RestAPI/WC/OAuthSetting For example, http://localhost:8082/RestAPI/WC/OAuthSetting.
        Note: If you have only added localhost as the redirect URI, you must access the product using localhost to configure the email server.
    14. Click Create.
    15. Click DOWNLOAD JSON to download the file containing the authorization server details. Copy the Client ID and Client Secret displayed on the screen.

    Paste the copied Client ID and Client Secret during email server configuration.

    How to configure SMTP email server in ADManager Plus

    1. Open the ADManager Plus web console.
    2. Navigate to Admin > General Settings > Server Settings > Email Server/SMS Gateway.
    3. Select Mode as SMTP.
    4. Specify the following:
      • Email Server: Enter the email server's hostname or IP address.
        Note: Ensure you enter the appropriate hostname based on your region for proper configuration. For example, use outlook.office365.us for Azure US Government.
      • Email Port: Specify the port number used by the email server.
      • Click the Authentication link to secure your email server from anonymous logins. In the pop-up that opens, select the desired Authentication Type.

        If you select Basic Authentication as the Authentication Type:

        • Enter the username and password of an account with administrator privileges for the email server.
        • Choose a communication protocol using which the email server can be accessed.
        • Click Configure.

        If you select OAuth Authentication as the Authentication Type:

        • Select your Mail Provider from the options provided: Microsoft or Google. If your email provider is Microsoft, enter the Username, Tenant ID, Client ID, and Client Secret in the respective fields, and click Configure. Azure Cloud is the default Azure environment. You can select the Azure environment of your choice by clicking Choose the appropriate Azure environment.
        • If your email provider is Google, enter the Username, Client ID, and Client Secret in the respective fields, and click Configure. Learn how to find these values in the Google Developer Console.
          • Note: When you are redirected to Microsoft 365 during OAuth authentication, authorize using the same username given during the configuration. It is mandatory to use a username associated with a mailbox. Find more information regarding OAuth authentication troubleshooting here.
      • From Address: Enter the email address from which you would like to receive notifications.
      • Administrator's Email Address: Enter the email address at which you would like to receive notifications.
    5. Click Save Changes.

    Configure the email server using an API

    This type of email server connection will be authenticated with the help of your email provider's API.

    To configure the email server using an API, choose one of the following as your email provider:

    Email server configuration using an API with Microsoft Azure as your email provider

    If you are using Microsoft Azure as your mail provider, find the Azure tenant ID, Client ID, and Client Secret using the steps listed below:

    1. Go to the Azure portal and sign in using your Microsoft account.
    2. Select Azure Active Directory from the Azure services section.
    3. Go to Manage > App registrations > + New registration to open the Register an application window.
    4. Enter the application name (for example, ADManager Plus Application) and select the default Supported account types.
    5. On the left pane, go to Manage > API permissions > + Add a permission.
    6. Select Microsoft Graph. Click Application permissions as the type of permission required.
    7. From the listing, select Mail > Mail.Send. Click Add permissions.
    8. Select Grant admin consent for <tenantname>.
    9. Find and copy the values of the Client ID and Tenant ID displayed.
    10. On the left pane, go to Manage > Certificates & secrets.
    11. Click + New client secret.
    12. Enter an appropriate description. Choose 24 months as the expiration date; this is the maximum value that can be used.
    13. Click Add.
    14. Find and copy the client secret value (for example, "14uClLxkHtIVGR3wkCq12341Nd5VtestkkWTyIPrrE=").

    Email server configuration using an API with Google as your email provider

    If you are using Google as your email provider, then perform the following:

    Steps to find the JSON private key

    1. Go to https://console.developers.google.com/ and log in to your Google Account.
    2. Navigate to the Service Accounts page.
    3. Click the Select a project drop-down and click NEW PROJECT.
    4. Click + CREATE SERVICE ACCOUNT. In the Service account details window, specify the Service account name, Service account ID, and Service account description. Click CREATE AND CONTINUE.
    5. Click Grant this service account access to project to select the IAM roles required for the service account.
    6. Click CONTINUE.
    7. Add the users and groups that you want to allow to access and manage the service account.
    8. Click DONE.
    9. Select the email address of the service account created.
    10. In the Keys section, select Create new key from the ADD KEY drop-down.
    11. Select JSON as the key type.
    12. Click CREATE.
    13. The JSON private key will be generated and downloaded to your local system. A new private key will be generated each time, so once generated, it is vital to keep the key secure.

    Steps to enable Gmail's API service

    1. Log in to https://console.cloud.google.com/.
    2. Go to Projects. Click + ENABLE APIS AND SERVICES.
    3. Choose Gmail API and select ENABLE.

    Steps to provide domain-wide authority to the service account

    1. Log in to the Google Workspace Admin Console as a super administrator.
    2. Go to Security > Access and data control > API controls.
    3. Under the Domain wide delegation pane, choose MANAGE DOMAIN WIDE DELEGATION.
    4. Click Add new.
    5. Type in your service account's Client ID from this page.
    6. In the OAuth scopes (comma-delimited) field, select the scopes that your application needs access to. If it needs domain-wide access to the Gmail API, then type in https://mail.google.com.
    7. Click AUTHORIZE.

    The application now has the authority to make API calls as users within your domain.

    How to configure API email server in ADManager Plus

    1. Open the ADManager Plus web console.
    2. Navigate to Admin > General Settings > Server Settings > Email Server/SMS Gateway.
    3. Select Mode as API.
    4. Choose your Mail Provider, Microsoft or Google, from the drop-down.
    5. In the From Address field, specify the email address from which notification emails are to be sent.
    6. In the Administrator's Email Address field, specify the email address to which the notification emails are to be sent.
    7. If your mail provider is Microsoft, type in the Tenant ID, Client ID, and Client Secret in their respective fields. If your mail provider is Google, upload the JSON Private Key.
    8. Check Send Emails in HTML Format if you require emails in HTML format.
    9. Click Save Settings.

    By utilizing ADManager Plus, you can efficiently and easily complete the steps applicable to your configuration to receive product notifications via email.

    Don't see what you're looking for?

    •  

      Visit our community

      Post your questions in the forum.

       
    •  

      Request additional resources

      Send us your requirements.

       
    •  

      Need implementation assistance?

      Try OnboardPro

       
    Copyright © © 2025, ZOHO Corporation.All Rights Reserved.