Here, in this blog, I am going to talk and Impersonation rights in Exchange Online and provide the step-by-step guide on how to grant Application Impersonation Rights in Office 365.
Application Impersonation is a significant feature of Office 365 Cloud environment that allows dealing with multiple Exchange Online mailboxes. The role permits to access several Office 365 mailboxes through a single account. It allows performing activities to impersonate user mailboxes on their behalf. This feature created and handled by only Office 365 Administrator.
Now, let see how to use the Exchange Online Portal and the Windows PowerShell to configure check the Impersonation rights in Exchange Online.
Method 1: How to Assign Office 365 Impersonation Rights using the Exchange Admin Centre?
Below are the steps to check Impersonation Rights in Office 365. An administrator can follow the below steps and assign permission.
Step 1: Go to the Exchange Admin Portal and click the Permission. Under the Admin role, hit plus (+) sign, a new window appear.
Step 2: Under the name section in the space provide, enter the name of the right (ApplicationImpersonation). One can provide any name according to their suitability.
Step 3: Under the Role section of the new window, again, click on the plus symbol. A new dialog box appears, select the Application Impersonation option, hit add and OK.
Step 4: Similarly, under the member section, using the plus sign add members to whom you want to assign the Impersonation rights. Lastly, click the Save button. Now, you find the newly created role in the organization management of Office 365 Admin Portal.
To Grant Full Access Permission to Office 365 Admin Mailbox
Step 1: Go to Exchange Admin Portal and hit the Recipients. Under the mailbox section, select the user to whom you want to give the Full Access Permission.
Step 2: A new “Edit User Mailbox” window appears, click on Mailbox Delegation. Then, in the Full Access option, add the user, click OK and Save.
Method 2: How to Grant Impersonation Rights to Office 365 Mailbox using PowerShell?
Step 1: Run the Windows PowerShell as an Administrator and run the below command to set the execution policy as unrestricted to connect the PowerShell to Office 365.
Set-ExecutionPolicy Unrestricted
Step 2: Execute the given command and login to Exchange Online.
$livecred = Get-Credential
Step 3: Create the new session in Exchange Online account.
$s = New-PSSession -ConfigurationName Microsoft.Exchange -ConnectionUri https://ps.outlook.com/powershell -Credential $cred -Authentication Basic -AllowRedirection
Step 4: Import the new session.
$importresults= Import-PSSession $s
Step 5: Run the given command for organization management.
Enable-OrganizationCustomization
Step 6: Assign Impersonation Role to the mailbox.
New-ManagementRoleAssignment -Role “ApplicationImpersonation” -User UserName
Conclusion: I hope from this blog, you have understood the process of how to Grant Application Impersonation Rights in Office 365 using both PowerShell and Exchange Online interface. With the help of the above two methods, the Exchange Online Administrator can easily perform the Office 365 impersonation rights.
Related Topics: How to Increase Mail Attachments Size in Office 365 Online