When configuring ITPAM to connect to a remote mailbox, it is best to start by the reviewing our provided documentation.

The basic steps are found in the release notes for ITPAM 4.3.05 CP08, and ITPAM 4.4 CP02.  This document adds a little more detail to the instructions already given.

IT Process Automation 4.3 SP05 CP06 or higher and 4.4 CP02 or higher

Azure Mailbox using OAuth to connect to PAM to handle mail

1. Register the application in Azure: Quickstart: Register an application with the Microsoft identity platform
   
   On that page, follow the instructions down to but not including "Add a redirect URI"
   
   
2. Add POP and IMAP permissions to the AAD application and register service principals in Microsoft Exchange: Authenticate an IMAP, POP or SMTP connection using OAuth
   
   On this page, follow the instructions in the following sections:
     Register your application
     Get an access token
     Add the POP, IMAP, or SMTP permissions to your Entra AD application (enables ITPAM to talk to MS Exchange):
   
3. Apply CP08 for ITPAM 4.3.05 or CP02 for ITPAM 4.4
   
   
4. Execute these Powershell commands:
   

   Install-Module -Name ExchangeOnlineManagement

   Import-module ExchangeOnlineManagement 

   Connect-ExchangeOnline -Organization <tenantId>
$MyApp = Get-AzureADServicePrincipal -SearchString "ITPAM Mail Trigger"

   New-ServicePrincipal -AppId $MyApp.AppID -ServiceID $MyApp.ObjectId -DisplayName "Service Principal for IMAP APP"
Add-MailboxPermission -Identity "xxx@yyyy.onmicrosoft.com" -User $MyApp.ObjectId -AccessRights FullAccess

Configuring Office365 Authentication in ITPAM