1. SureCloud Platform
  2. Administration
  3. Tenant Management

Custom Email Domains

SureCloud's Custom Email Domains feature enables your organization to send platform notifications from an email address that appears to be from your internal team. This functionality enhances your workflow by streamlining communications and instilling greater confidence in email authenticity for recipients.

How Custom Email Domains Work

When enabled, all notifications sent via the SureCloud platform will use the custom email domain specified by your organization. This ensures emails align with your corporate branding, instilling confidence and minimizing the risk of recipient confusion or distrust.

For organizations using Azure Graph API or Office 365, SureCloud recommends using a licensed mailbox instead of a shared mailbox. This ensures optimal compatibility with your email infrastructure.

Note: The setup for Custom Email Domains involves configuration through SureCloud’s API and requires coordination with the SureCloud Customer Success Team.

Setup from Your Side (Using Graph API Authentication)

To set up the custom email domain using Graph API authentication, the following configurations are required:

Ensure you have the following details ready:

    • Azure AD Tenant ID
    • Azure AD Client ID / Application ID
    • Email address of the mailbox to use

Configuring Azure AD for API Mailbox Authentication

Follow these steps to configure Azure AD for SureCloud to use API mailbox authentication:

Step 1: Create an Azure Application

  1. Navigate to your Azure AD portal at Azure Portal.
  2. Go to App registrations and select New registration.
  3. Provide a name for the application and select Accounts in this organizational directory only (your tenant name).
  4. Leave the Redirect URI field blank.
  5. Click Register.

 

 

Step 2: Add Required Permissions to Send Email

  1. Go to API permissions and select Add a permission.
  2. Choose "Application" permissions (ensure this is not "Delegated" permissions, as it won’t provide sufficient access).
  3. Add the permission "Mail.Send".
  4. Grant admin consent by selecting Grant admin consent for SureCloud.

 

Step 3: Restrict Application Access to Specific Mailbox

To lock down the application to send emails only from a specific mailbox:

  1. Refer to Microsoft's guide.
  2. Ensure you have the following information:
    • AppId/ClientId of the created application.
    • A mail-enabled security group containing the mailbox and its ID.
    • Access to PowerShell and the ability to use CmdLet Connect-ExchangeOnline.
  3. Run the following commands in PowerShell (replacing the value with your appid and mail-enabled security group):

Create the access policy:

New-ApplicationAccessPolicy -AppId e8f4eefc-046g-4084-9b4b-2ab8f144b59f -PolicyScopeGroupId EvenUsers@contoso.com -AccessRight RestrictAccess -Description "Restrict this app to members of distribution group EvenUsers."

Test the policy:

Test-ApplicationAccessPolicy -Identity user1@contoso.com -AppId e8f4eefc-046g-4084-9b4b-2ab8f144b59f

 

Step 4: Upload the provided certificate

  1. After the SureCloud Success team have received your request with the information from step 1 in "How to Request and Enable a Custom Email Domain" they will provide a certificate to be uploaded to your Azure App Registration.
  2. To upload the certificate:
    • Navigate to your created App Registration and access "Certificates and Secrets"
    • From here, upload the provided certificate via the "upload certificate" button

 

How to Request and Enable a Custom Email Domain

To enable the Custom Email Domains feature in SureCloud, follow these steps:

1. Gather the following details to include in your request:

    • Tenant Name: The name of your SureCloud tenant from which emails will be sent.
    • Custom Email Domain: The email domain you want to use for sending notifications (e.g., notifications@yourdomain.com).
    • Azure AD Tenant ID: Found in Azure AD under Properties as Directory ID.
    • Client ID/Application ID: Located in the application's overview section.
    • Mailbox UUID: The Directory Object ID UUID of the mailbox.

2. Submit Your Request

    • Email the SureCloud Customer Success Team at success@surecloud.com, including all the required information listed above.

The SureCloud team will review and process your request, enabling the feature.

Setting Up Notifications After Configuration (Designer/Admin Users Only)

Once your custom email domain is set up, you’ll use the existing platform notification functionality to configure and send emails. This process remains unchanged, allowing you to:

    • Define the content of your notifications.
    • Specify email recipients.
    • Schedule or trigger notifications as needed.

For guidance on using the notification feature, refer to the Creating and Managing Notifications guide in the SureCloud Help Centre.

Was this article helpful?
0 out of 0 found this helpful

Articles in this section