AvePoint Learn
Request article
Contact support
Request article
Contact support
English

    Home > Required Permissions > Service Account Profile Authentication

    Export to PDF

    Service Account Profile Authentication

    If you want to use the service account profile to manage Exchange mailboxes / security groups and distribution lists, make sure the account within the profile has the SharePoint administrator role and the Exchange Administrator role, and that the service account does not have multi-factor authentication (MFA) enabled. To find rules where the Exchange Administrator role is required, refer to Supported Rules for Service Level Policies and Supported Rules for Tenant Level Policies.

    Due to Microsoft’s announcement in Update your applications to use Microsoft Authentication Library and Microsoft Graph API – Microsoft Tech Community, the MFA management-related API leveraged by Policies for Microsoft 365 will no longer be supported. Therefore, the MFA Status Enforcement rule was removed on March 6, 2022.