Email account configuration (iOS user policy)

The Email account configuration lets you add an Exchange Online or Exchange Server email account on the device.

Setting

Description

Account name

The account name.

Server name

For Exchange Online, enter outlook.office365.com.

For Exchange Server, enter your server URL.

Note that outlook.office365.com applies to the worldwide Microsoft 365 cloud. If you’re using a different Microsoft 365 cloud, such as Office 365 Germany, see the Microsoft page Office 365 URLs and IP address ranges.

When you use Exchange Server with the Sophos Mobile EAS proxy, enter its URL instead.

Leave this field empty when using OAuth. The Exchange host is auto-discovered.

Domain

For Exchange Online, leave this field empty.

For Exchange Server, enter the domain of the user account.

User

The user's sign-in name.

For Exchange Online, this is usually the email address. Enter %_EMAILADDRESS_% to use the email address of the user assigned to the device.

For Exchange Server, enter %_USERNAME_% to use the name of the user assigned to the device.

Email address

The email address of the account.

If you enter the variable %_EMAILADDRESS_%, the server replaces it with the actual email address.

Password

The password for this account.

If you leave this field empty, users must enter the password on their devices.

Turn on OAuth 2.0

The account uses the OAuth 2 authentication framework, i.e. users authenticate with their Microsoft credentials.

OAuth authorization endpoint

The URL of the OAuth endpoint handling requests for user authentication.

When you enter a value, the mail server isn’t auto-discovered. You must enter its URL in Server name.

Only enter a value if required by your authentication provider.

OAuth token endpoint

The URL of the OAuth endpoint handling requests for access tokens.

Only enter a value if required by your authentication provider.

Synchronization period

The time period used for synchronizing emails.

Only the emails from within the specified period are synchronized to the inbox on the managed device.

SSL/TLS

The connection to the Exchange server is secured by SSL or TLS (depending on what the server supports).

We recommend that you select this check box.

Allow move

Users can move emails from this account to another. This also allows users to use a different account when replying to or forwarding a message from this account.

Allow recent address syncing

The account is included in the syncing of recently used addresses with other devices using iCloud.

Use in Mail only

The account can only be used to send messages from the Mail app. It cannot be selected as a sending account for messages created with other apps, for example Photos or Safari.

Identity certificate

Select the identity certificate for the connection to the Exchange server.

The list includes all certificates from Client certificate configurations of the current policy.

Enable S/MIME

Users can send and receive emails that are encrypted with a S/MIME certificate.

Signing certificate

Encryption certificate

The certificates that are used for email signing and encryption.

You need to upload a certificate before you can select it. You do this in the Client certificate configuration of the current policy.

Allow user to send unencrypted emails

For each outgoing email, users can choose to encrypt it.

Synchronize calendar

Outlook calendar items (events, appointments, meetings) are synchronized with the Calendar app.

User can change calendar synchronization

The user can turn calendar synchronization on or off.

Synchronize contacts

Outlook contacts are synchronized with the Contacts app.

User can change contacts synchronization

The user can turn contacts synchronization on or off.

Synchronize mail

Outlook email is synchronized with the Mail app.

User can change mail synchronization

The user can turn email synchronization on or off.

Synchronize notes

Outlook notes are synchronized with the Notes app.

User can change notes synchronization

The user can turn notes synchronization on or off.

Synchronize tasks

Outlook tasks are synchronized with the Reminders app.

User can change tasks synchronization

The user can turn tasks synchronization on or off.