To deploy StealthMail within your Azure subscription, you need to register the StealthMail application in Azure Active Directory (AD).
This allows StealthMail service to get authorized access to Azure services including Azure Active Directory and provide secure email correspondence to the contacts contained there.
To register a StealthMail application in Azure AD, follow the next steps:
Sign in to the Azure portal using an account that has administrative rights within the Azure subscription, where you are going to deploy StealthMail.
Navigate to Azure Active Directory and then to App registrations.
Click on the New registration button.
In the opened frame, specify the name of the application (e.g. StealthMail App).
Leave the rest of the options with default values and click Register.
Next you need to grant to the application certain permissions. It will allow StealthMail to interact with the necessary Azure components and services.
Click the API permission list item and in appeared frame click Add a permission.
In the opened frame scroll down to the bottom of the page and pick Azure Active Directory Graph.
Choose Application permissions option.
Scroll the opened page down.
Expand the Directory section and pick Directory.Read.All.
Then click on the Add permissions button.
Next you will be notified “Permissions have changed [...]”.
To complete the current step you or azure subscription administrator (how has according rights) should grant consent.
Scroll the page down and press Grant admin consent for Default Directory button and confirm your action by pressing Yes button.
After permissions go to Certificates & secrets section then press New client secret to generate Application secret. It is a password analog for registered recently StealthMail App. It is required for authorised API usage.
In the appeared frame enter any description you want and choose an expiration period Never.
Then press Add button.
Scroll the page down and Copy generated secret.
Please Note: Save Application secret in protected storage right now, because after refreshing or leaving the current page it will be hidden and cannot be previewed any more.