You can set up an email box in Google Security Operations to send emails to users.
When you select the Google SecOps SMTP configuration (default), the
platform email service sends your emails. You have the option to select the
Customer Configuration and your email service will send out the emails.
This article shows you how to set up your email box using Microsoft Azure.
Before you begin
Log into the Microsoft Azure portal.
Navigate to Users > Active Users.
Select the Google SecOps user and, in the flyout that appears, click Mail.
In the Email apps section, click Manage email apps.
Verify that the Authenticated SMTP setting is enabled.
When you're finished, click Save changes.
Set up the email for Microsoft Email Settings
Navigate to Settings > Advanced > Email Settings.
Select Customer Configuration.
Fill in the fields according to your organizational needs. In the Display name field, enter the sender's email address.
Select the Use Exchange OAuth checkbox. The Azure Client ID
and Azure Tenant ID fields are displayed.
To obtain the required IDs and enable this feature from
Microsoft, follow these steps:
Log into the Microsoft Azure portal.
Click App Registrations.
Locate the OAuth mail application app that you have previously created.
Copy over the Application Client ID and the Tenant ID from the top of the screen. You will need them later to paste into the Google SecOps platform.
Navigate to Manage > Advanced Settings and set
Allow public client flows to Yes.
Make sure the following permissions are granted on the API
Permission tab:
[[["Easy to understand","easyToUnderstand","thumb-up"],["Solved my problem","solvedMyProblem","thumb-up"],["Other","otherUp","thumb-up"]],[["Hard to understand","hardToUnderstand","thumb-down"],["Incorrect information or sample code","incorrectInformationOrSampleCode","thumb-down"],["Missing the information/samples I need","missingTheInformationSamplesINeed","thumb-down"],["Other","otherDown","thumb-down"]],["Last updated 2025-08-29 UTC."],[[["\u003cp\u003eGoogle Security Operations (SecOps) allows you to configure an email box for sending emails to users.\u003c/p\u003e\n"],["\u003cp\u003eYou can choose between using the default Google SecOps SMTP configuration or a customer-configured email service.\u003c/p\u003e\n"],["\u003cp\u003eThis guide specifically outlines how to set up your email box using Microsoft Azure, including enabling Authenticated SMTP and configuring settings.\u003c/p\u003e\n"],["\u003cp\u003eSetting up the email service requires you to retrieve the Azure Client ID and Tenant ID from a pre-existing OAuth mail application in the Microsoft Azure portal.\u003c/p\u003e\n"],["\u003cp\u003eProper permissions, such as IMAP.AccessAsUser.All and SMTP.Send, must be granted within Azure's API permissions settings for the email integration to work.\u003c/p\u003e\n"]]],[],null,["# Set up your email\n=================\n\nSupported in: \nGoogle secops [SOAR](/chronicle/docs/secops/google-secops-soar-toc) \n\nYou can set up an email box in Google Security Operations to send emails to users.\nWhen you select the Google SecOps SMTP configuration (default), the\nplatform email service sends your emails. You have the option to select the\nCustomer Configuration and your email service will send out the emails.\n\nThis article shows you how to set up your email box using Microsoft Azure.\n\nBefore you begin\n----------------\n\n1. Log into the Microsoft Azure portal.\n2. Navigate to **Users \\\u003e Active Users**.\n3. Select the Google SecOps user and, in the flyout that appears, click **Mail**.\n4. In the **Email apps** section, click **Manage email apps**.\n5. Verify that the Authenticated SMTP setting is enabled.\n6. When you're finished, click **Save changes**.\n\nSet up the email for Microsoft Email Settings\n---------------------------------------------\n\n1. Navigate to **Settings \\\u003e Advanced \\\u003e Email Settings**.\n2. Select **Customer Configuration**.\n3. Fill in the fields according to your organizational needs. In the **Display name** field, enter the sender's email address.\n4. Select the **Use Exchange OAuth** checkbox. The **Azure Client ID** and **Azure Tenant ID** fields are displayed.\n5.\n To obtain the required IDs and enable this feature from\n Microsoft, follow these steps:\n\n 1. Log into the Microsoft Azure portal.\n 2. Click **App Registrations**.\n 3. Locate the OAuth mail application app that you have previously created.\n 4. Copy over the Application Client ID and the Tenant ID from the top of the screen. You will need them later to paste into the Google SecOps platform.\n 5. Navigate to **Manage \\\u003e Advanced Settings** and set **Allow public client flows** to **Yes**.\n 6. Make sure the following permissions are granted on the **API\n Permission** tab:\n - IMAP.AccessAsUser.All\n - SMTP.Send\n 7. Click **Save** to apply your changes.\n\n**Need more help?** [Get answers from Community members and Google SecOps professionals.](https://security.googlecloudcommunity.com/google-security-operations-2)"]]
