Switch to Certificate-Based Authentication - Role session

You can enable sapio365 RBAC delegates to use certificate-based authentication instead of secret-based authentication in their sapio365 Role sessions by configuring the registered application used in their RBAC role’s credential set.

How to switch to Certificate-Based Authentication in for an RBAC credential set

1. From the Dashboard, click on the RBAC submenu item Configuration.

2. In Credentials, select a credential set and click Edit.

3. Toggle Certificate thumbprint to YES and follow the prompts (expand the section below for step-by-step instructions).

Steps

1. Once you’ve toggled Certificate thumbprint to YES, users with the affected role will need to enter a certificate thumbprint.

OPTIONAL - Enable application to user PowerShell

This option allows the application to seamlessly connect to PowerShell Exchange, SharePoint and Compliance Search for sapio365 features that require it.

2. Toggle Exchange Enablement to YES.

Note that the ‘Exchange.ManageAsApp’ permission (requires admin consent) and ‘Exchange Administrator' Role will be assigned automatically once enabled.

3. Click Proceed to sign-in and give consent to the new permission.

4. Click Continue.

5. Click Accept to consent to the updated permissions list. You’ll see the changes in the configuration dialog confirming the use of PowerShell by the application.