![Microsoft Exchange Online | SMTP onboarding to App RBAC [MC1158911]](https://mwpro.co.uk/wp-content/uploads/2024/08/pexels-pachon-in-motion-426015731-16749547-1024x683.webp "Microsoft Exchange Online | SMTP onboarding to App RBAC [MC1158911] 1")
[Introduction]
We’re simplifying how organizations grant applications permission to send email on behalf of mailboxes. Today, customers must manually assign permissions to each individual mailbox using PowerShell, which is time-consuming and inefficient. With this new capability, admins can assign the SMTP.SendAsApp role to an app through App Role-Based Access Control (RBAC), enabling group-based or scoped access to mailboxes. This simplifies onboarding for SMTP clients using OAuth and provides a scalable, secure, and modern approach to managing mailbox access.
This message is associated with Microsoft 365 Roadmap ID 498356.
[When this will happen:]
- General Availability (Worldwide): We will begin rolling out early November 2025 and expect to complete by late November 2025.
[How this affects your organization:]
Who is affected:
- Admins managing SMTP AUTH clients using OAuth in Exchange Online.
What will happen:
- Admins can assign the SMTP.SendAsApp role to applications via App RBAC.
- This enables group-based or scoped access to mailboxes.
- Eliminates the need for per-mailbox permission assignments.
- Streamlines onboarding for SMTP clients using OAuth.
- No changes to end-user experience.
[What you can do to prepare:]
- Prepare to create security or distribution groups for mailboxes requiring access.
- Plan for migration from per-mailbox permissions to group-based RBAC assignments.
- Communicate this change to your helpdesk or support teams.
- Update internal documentation if you currently detail mailbox permission onboarding.
- Review onboarding documentation: Authenticate an IMAP, POP or SMTP connection using OAuth | Microsoft Exchange | Microsoft Learn (https://learn.microsoft.com/exchange/client-developer/legacy-protocols/how-to-authenticate-an-imap-pop-smtp-application-by-using-oauth)
- Documentation will be updated November 1st
Source: Microsoft
Latest Posts
- Dynamics 365 Sales – Boost pipeline by autonomously researching leads with Sales Qualification Agent [MC1159615]
- Billing View now supports cost management data from multiple organizations
- Amazon EC2 C8gn instances are now available in additional regions
- Amazon Redshift Concurrency Scaling is now available in 10 additional AWS regions
![OneDrive folder sync selection dialog temporarily unavailable when using zh-CN language setting [MC1158899]](https://mwpro.co.uk/wp-content/uploads/2024/08/pexels-d123x-792289-150x150.webp "OneDrive folder sync selection dialog temporarily unavailable when using zh-CN language setting [MC1158899] 6")
![Microsoft Outlook: New third-party enriched properties available for customizing profile cards [MC1158902]](https://mwpro.co.uk/wp-content/uploads/2025/06/pexels-conojeghuo-173294-96x96.webp "Microsoft Outlook: New third-party enriched properties available for customizing profile cards [MC1158902] 7")