Adding Modern Authentication (OAuth 2.0) to MYOB Advanced Business

Now is the time to upgrade your MYOB Advanced Business system to a modern authentication service.

Microsoft have recently announced that they are ending support for their Basic Authentication services, with the exemption of Simple Mail Transfer Protocol (SMTP) Authentication, on October 1st, 2022. All MYOB Advanced sites that still use Basic Authentication in their System Email Accounts will experience connectivity issues after this date.

With MYOB Advanced version 2020.5.3, support for Modern Authentication (OAuth 2.0) services has become available. We recommend you update your MYOB Advanced system to the latest version to implement these new services.

To help you avoid connectivity loss and implement a modern email authentication service, we have created a guide to set up a system email along with the exchange integration. The steps below describe a system email account set up for Azure Online. The same approach can be used when setting up an Exchange Online (Office 365) account.

Please note that the procedure below is designed for the most common usage scenarios. If you are implementing a more complicated scenario and encounter difficulties, please contact our support team at advanced.support@kilimanjaro-consulting.com

How to link a system email account to MYOB Advanced Business

On the Microsoft Azure Portal, complete steps from the Register an application with the Microsoft Identity platform section. On the Overview page, copy the following values which will be used in the MYOB Advanced setup:

  • Application (client) ID
  • Directory (tenant) ID
Acumatica email account setup
Acumatica email account setup

Following this, complete the steps from the Add a client secret for an application section. Copy the client secret value shown. The value will be used in the MYOB Advanced setup.

Acumatica email certificates & secrets

In MYOB Advanced, on the External Applications screen, create a new record by completing the following steps.

  1. In the Type dropdown, select the Exchange SMTP/IMAP/POP value.
  2. In the Application Name field, specify the application name.
  3. In the Client ID field, specify the Application (client) ID value
  4. In the Client Secret box, specify the Client Secret Value.
  5. Save your changes
Acumatica External Application setup

Then copy the value from the Return URL field. This will be used in the next step for the Azure application setup.

Acumatica External Application setup

On the Microsoft Azure Portal, complete the steps from the Add a redirect URI section as follows. On the overview page, click the Add a Redirect URI link as shown in the following screenshot.

Acumatica email account setup

In the Configure Platforms, select Web as shown in the following screenshot.

In the Redirect URI box, specify the Return URL box value from MYOB Advanced. Then click the Configure button.

Acumatica email authentication

On the Microsoft Azure Portal, complete the steps from Application permission to Microsoft Graph to grant the needed delegated permissions as follows. Select API Permissions > Add a Permission> Microsoft Graph.

Acumatica email authentication

Select Delegated Permissions

Select the following permissions

  1. Offline_access
  2. IMAP.AccessAsUser.All
  3. SMTP.Send
  4. POP.AccessAsUser.All if needed (however, POP3 is not recommended for use in MYOB Advanced).

Then click Add Permissions button as shown below in the following screenshot.

Acumatica email API permission

Now in MYOB Advanced, go to the System Email Account screen, then create a new record as follows. On the Servers tab, specify the following values:

  • In the Account Name field, specify the account name.
  • In the Email Address field, specify the email address.
  • Select the Incoming Mail Protocol needed.
  • Specify the Root Folder field value.
  • Specify the Incoming Email Server and Outgoing Email Server fields’ values
  • In the Authentication Method dropdown, select the Azure Modern Authentication option.
  • In the Azure Tenant ID field, specify the Directory (tenant) ID value from earlier.
  • In the External Application field, select the external application created earlier.

Below is an example of all these fields filled out.

Acumatica Email Request API Permissions

On the Advanced Settings tab, specify the following values:

  • If your server supports the encrypted incoming connection, select the Incoming server requires encrypted connection (SSL) checkbox.
  • If your server supports the encrypted outgoing connection, select the TLS option on the Outgoing server encrypted connection.

You can find these fields in the following screenshot. Please save your changes.

Acumatica System Email Accounts setup

Following this, open your Outlook program. Sign into your account. Click the Test button to send a test email to your email account. Verify that the test email was sent to your inbox folder. Now your email account is set up using the modern email authentication service.

Acumatica System Email Accounts setup
Outlook Text email

How to integrate Microsoft Exchange with MYOB Advanced Business

The initial setup stages for the Microsoft Exchange Integration are very similar to the system mail setup. From the Microsoft Azure Portal, you will need the following values:

  • Application (client) ID
  • Directory (tenant) ID
  • Client Secret
Acumatica email account setup
Acumatica email account setup
Acumatica email certificates & secrets

In MYOB Advanced, on the External Applications form, create a new record by completing the following:

  • In the Type dropdown, select the Exchange Online AWS value.
  • In the Application Name field, specify the application name needed.
  • In the Client ID field, specify the Application (client) ID value as mentioned earlier.
  • In the Client Secret field, specify the client secret value as mentioned earlier.

These fields can be found in the following screenshot. You may now save your changes.

External Application setup

On the Microsoft Azure Portal, complete the steps from Configure for app-only authentication to grant the delegated permissions. On the Exchange Server Configuration screen, do the following:

  • In the Account Name field, specify the account name.
  • In the Email Address field, specify the email address.
  • In the Authentication Method dropdown, select the Azure Modern Authentication option.
  • In the Azure Tenant ID field, specify the Directory (tenant) ID value from earleir.
  • In the External Application field, select the external application created earlier.

You may find these fields in the following screenshot. Please save your changes.

Exchange Server Configuration

Click on the Test Server button to test the account settings. The green check box on the form toolbar indicates that the connection is set up. Now your Exchange Integration is using the modern email authentication service in MYOB Advanced.

The team at Kilimanjaro Consulting are always available to help you through this process. Please contact our Advanced support team at advanced.support@kilimanjaro-consulting.com or give us a call at 1300 857 464 (AU) or 0800 436 774 (NZ) if you need assistance upgrading MYOB Advanced Business and implementing these email authentication changes.

Accolades

MYOB Diamond Partner
ES-HIGH-ACHIEVER-AWARDS-2021-EX-BUS-DEV-AUS
ES-PARTNER-AWARDS-2021-RGB-Exc-Bus-Dev-Exo-AU_reversed
PARTNER-AWARD-2020-EXBUS-EXO-AU
MYOB-WARD-EXCEL-BUS-DEV-EXO-2019-AU
AwardPartner2018-2x
AwardPartner2016-2x
Excellence in Business Development 2015 AU
MYOB EXO Award 2015
AwardPartner2013-2x
AwardSolutions2012-2x
Telstra Awards 2012