Starting with Veeam Backup for Microsoft Office version 4c, two different modern authentication methods and a basic authentication method for working with Office 365 organizations are supported.
Depending on the Office 365 tenant configuration and the restrictions on using legacy authentication protocols, one of the following authentication methods may be used:
These authentication types require different sets of permissions to be configured.
Veeam service account you are going to use should have a Global Administrator role.
There are two options:
Before configuring permissions, please check the following things:
The following sections are laid out as follows:
Configuring permissions for Exchange Online.
Below is an example of PowerShell cmdlets that could be used to configure a new authentication policy with AllowBasicAuthPowershell and AllowBasicAuthWebService enabled for the Veeam service account.
To create a new authentication policy named "Allow Basic Auth":
New-AuthenticationPolicy -Name "Allow Basic Auth"
Set-AuthenticationPolicy -Identity "Allow Basic Auth" -AllowBasicAuthPowershell
Set-AuthenticationPolicy -Identity "Allow Basic Auth" -AllowBasicAuthWebService
Set-User -Identity <UserIdentity> -AuthenticationPolicy "Allow Basic Auth"
Configuring Permissions for SharePoint Online.
Configuring Azure AD Application.
All permissions must have Application type.
For more information about permission types please visit https://docs.microsoft.com/en-us/azure/active-directory/develop/v2-permissions-and-consent
Exchange permissions should be configured the same way as in the Exchange section of this article.
SharePoint permissions should be configured the same way as in SharePoint section of this article.
KB ID: | 2969 |
Product: | Veeam Backup for Microsoft Office 365 5.0, Veeam Backup for Microsoft Office 365 4.0 |
Published: | 2019-06-26 |
Last Modified: | 2021-01-26 |