Page tree
Skip to end of metadata
Go to start of metadata

Product Version: 10.3

Last Modified: 27 January 2021

Question

What API permissions must be provided to NAKIVO Backup & Replication to successfully back up and recover Exchange Online mailboxes, OneDrives, and SharePoint Online sites?

Answer

The following API permissions must be provided to NAKIVO Backup & Replication:

Microsoft Graph API

ServiceBackupRecovery
Exchange Online
  • Calendars>Calendars.Read
  • Contacts>Contacts.Read
  • Mail>Mail.Read
  • MailboxSettings>MailboxSettings.Read
    (required for backing up shared mailboxes)
  • User>User.Read.All
  • Calendars>Calendars.ReadWrite
  • Contacts>Contacts.ReadWrite
  • Mail>Mail.ReadWrite 
  • MailboxSettings>MailboxSettings.Read
    (required for recovery to shared mailboxes)
  • User>User.Read.All
OneDrive for Business
  • Files>Files.Read.All
  • User>User.Read.All 
  • Files>Files.ReadWrite.All
  • User>User.Read.All 
SharePoint Online
  • Group>Group.Read.All
  • Sites>Sites.Read.All
  • Sites>Sites.FullControl.All
  • User>User.ReadWrite.All
  • Sites>Sites.ReadWrite.All
  • Sites>Sites.FullControl.All
  • Sites>Sites.Manage.All
  • User>User.ReadWrite.All

Office 365 Exchange Online API

ServiceBackupRecovery
Exchange OnlineOther permissions>full_access_as_appOther permissions>full_access_as_app

The API permissions can be changed via your Azure Active Directory. For details, refer to Obtaining Microsoft 365 credentials (items 1-11). 



  • No labels