Security role for email client in PowerApp with Exchange sync and multiple users

(2) Share

Report

Posted on by JV-23091637-0

Hi all, we have built a PowerApp that uses Service-side synchronisation with Exchange, and been able to send out a number of emails via the "Send direct email" funtionality. Now, we want to respond to some of these emails from within the PowerApp using the email client, but we can not figure out what security role and settings need to be applied to a (normal) user to be able to do this, specifically if the use is not the owner of the email. When the system admin role is assigned it works (but this is to much access), and other, likely combinations of standard security roles, result in the following (rather cryptic) message when clicking the Reply button.

Any hints or suggestion how to tackle this problem?

Kind regards,

Joost van de Wiel

Categories:

Security

I have the same question (0)

All responses (1)

Answers (0)

Suggested answer

rezarizvii 70 on at

Like (0)

Report
Copy link

Link copied!
Hi, hope you are doing well.

The error message is indeed cryptic, but we know that this is a missing privilege issue.

Instead of giving broad roles like Sys Admin, I would suggest you update or clone a role and:

1. Go to Email table permissions
2. Set:

Read -> Organization

Append -> Organization

Append To -> Organization

Create -> User (this can stay lower to prevent users from sending emails on someone else's behalf)

That’s usually enough for replying to emails not owned by the user.

One more thing to check

If emails are coming from a shared mailbox or queue, make sure:

The user has access to that mailbox/queue

And it’s approved for server-side sync

Otherwise you’ll fix permissions and still hit issues.

Was this reply helpful? Yes No