Dstny Calendar sync configuration guide

Configure Calendar Synchronization for Microsoft Exchange in Office365 using OAuth2 Authentication

Make sure that you have Administrator access rights and can access the Azure Active Directory admin centre. 

Configure a Monitor User

1. Verify that you have a public DNS record pointing to the Exchange server from the Internet, for example by resolving yourdomain.com.
2. Ensure the enterprise firewall allows inbound HTTPS (TCP port 443) connections from all Service Nodes to the Exchange servers.

3. Access Windows PowerShell of the Exchange Server and prepare the password string using:

   $Password = "yourPassword" | ConvertTo-SecureString -AsPlainText -Force
       

4. Create a new monitor user and enable its mailbox:

   New-Mailbox -Name "Monitor" -Alias "Monitor" `
     -OrganizationalUnit 'domain/Users' `
     -UserPrincipalName monitor@yourdomain.com `
     -SamAccountName "monitor" `
     -FirstName "yourFirstName" `
     -LastName "Monitor" `
     -Password $Password `
     -ResetPasswordOnNextLogon $false `
     -Database "yourStorageGroup\yourDatabase"
       

   Use Enable-Mailbox instead if you're enabling an existing user.

5. Grant FullAccess rights to the Monitor user:

   Get-Mailbox -ResultSize Unlimited | Add-MailboxPermission -User "Monitor" -AccessRights FullAccess -InheritanceType All
       

Grant Calendar Rights per User

Use a script to apply calendar folder rights in batch, especially helpful when managing multiple users.

1. Retrieve the Monitor user:

   $User = Get-Mailbox Monitor
       

2. Get all mailboxes:

   $Mailboxes = Get-Mailbox -ResultSize Unlimited
       

3. Set calendar permissions for each mailbox:

   $Mailboxes | ForEach-Object {
     Add-MailboxFolderPermission $_":\Calendar" -User $User.Identity -AccessRights Reviewer
   }
       

   Note: "Calendar" folder name may vary depending on the Exchange language settings.

Set Up OAuth2 Access in Azure

1. Sign in to https://portal.azure.com
2. Navigate to Azure Active Directory → App registrations.
3. Click New registration, name it (e.g., "Exchange calendar synchronization"), then click Register.
4. Save the Application (client) ID and Directory (tenant) ID.
5. Under Certificates & secrets, click New client secret, name it, and choose an expiry time.
6. Copy the Client Secret Value and store it safely. You will use this, together with the Application ID and Tenant ID, in the calendar connector configuration.
7. Go to API permissions → Add a permission → Microsoft Graph.
8. Select Application permissions → Calendars.Read.
9. Click Grant admin consent for [your company].
10. Follow the prompts in the pop-up window.
11. Wait until the status shows green in the Configured Permissions window.

Uppdaterad 10 Oktober 2025 11:13