Basic and oAuth Configuration

SMTP Configuration

SMTP server configuration is needed in different workflows to send an email to end users and is used in user management workflows, alert notifications, and DSR workflows. To send an email, we need to configure the SMTP server using the LightBeam UI.

SMTP server configuration supports two authentication schemes: Basic Auth and OAuth. There are a few fields that are needed for both kinds of authentication, but a few fields are specific to each authentication scheme. Based on how the SMTP server is configured, the user needs to select the authentication scheme during SMTP configuration and provide the required authentication credentials.

Basic authentication

For basic authentication, a username and password are required along with a hostname, port, security mode, and a from email address.

Security Mode:

SSL and START_TLS are both methods to secure email transmission over SMTP, but they operate differently.

SSL (Secure Sockets Layer)

SSL (or TLS) SMTP involves establishing a secure connection from the start. SSL typically uses a dedicated port (often port 465 for SMTP). The connection is encrypted as soon as it is established, before any SMTP commands are sent.

START_TLS

START_TLS is a way to take an existing insecure connection and upgrade it to a secure connection using TLS. START_TLS typically uses the standard SMTP port (port 25 or port 587 for submission). The connection starts in plain text. After the initial SMTP handshake, the client issues the START_TLS command to switch to a secure TLS connection.

OAuth

With OAuth, the user needs to register the application to use email functionality in providers such as Office 365. To use smtp.office365.com, you need to register the app with permissions and then use the tenant ID, client ID, and client secret value to configure the SMTP.

The security mode in the case of Office365 SMTP is START_TLS, and the port should be 587

To create an application and fetch OAuth credentials in the Azure Portal:

API Permissions

• Mail.Send

Please use this link to create a new application with the above-mentioned API permissions: https://docs.lightbeam.ai/lxqobxw6ak7CTnsQjikH/spectra-ai/data-sources/messaging/ms-outlook#appendix

About LightBeam

LightBeam automates Privacy, Security, and AI Governance, so businesses can accelerate their growth in new markets. Leveraging generative AI, LightBeam has rapidly gained customers’ trust by pioneering a unique privacy-centric and automation-first approach to security. Unlike siloed solutions, LightBeam ties together sensitive data cataloging, control, and compliance across structured and unstructured data applications providing 360-visibility, redaction, self-service DSRs, and automated ROPA reporting ensuring ultimate protection against ransomware and accidental exposures while meeting data privacy obligations efficiently. LightBeam is on a mission to create a secure privacy-first world helping customers automate compliance against a patchwork of existing and emerging regulations.

For any questions or suggestions, please get in touch with us at: [email protected].