235 lines
10 KiB
Markdown
235 lines
10 KiB
Markdown
# Configure Thunderbird for 0ffice365
|
|
|
|
This guide shows how to access e-mail, address book and calendar with Thunderbird.
|
|
|
|
## Account and MFA ready?
|
|
Before connecting to Thunderbird to Office365, you need to have your MFA (Multi-Factor-Authentication) token/app configured.
|
|
|
|
If you use an app or SMS, then you can set it up directly at [Microsoft](https://aka.ms/mfasetup). Note that when you select the app and use "Use verification code", then you can also use 3rd party OTP apps.
|
|
|
|
For all the options check out the internal [knowledge base article](https://psi.service-now.com/kb_view.do?sysparm_article=KB0002928)
|
|
|
|
|
|
## Software Installed?
|
|
|
|
The package `thunderbird` needs to be installed before starting.
|
|
|
|
|
|
## Import PSI TLS Interception CA Certificate
|
|
|
|
Inside the PSI network access to E-Mail services using IMAP is protected by automatic malware scanning.
|
|
|
|
You get the [certificate in a zip file](https://drive.switch.ch/index.php/s/VK5zE9c0RRKIH8i/download) and unpack it.
|
|
|
|
Open Thunderbird. If this is your first account, it will show a account setup assisant which you can exit or close.
|
|
|
|
|
|
|
|
Then open the hamburger menu at the top right and select "Settings".
|
|
|
|
|
|
|
|
There type `certificate` into the search box at the top right. Then press below the "Manage Certificates..." button.
|
|
|
|
|
|
|
|
Open the "Authorities" tab.
|
|
|
|
|
|
|
|
Here click on "Import..." and then select the previously downloaded and unpacked file "cert_PSI_FW_SSL_Scanner_TRUST.crt".
|
|
|
|
|
|
|
|
Now tick the checkbox "Trust this CA to identify websites" and confirm this and the previous dialog with "OK". Finally close the "Settings" tab.
|
|
|
|
|
|
## Configure Your Mail Account
|
|
|
|
To add a new account open the hamburger menu on the top right. There choose "New" -> "Existing Mail Account...".
|
|
|
|
|
|
|
|
Here please enter first the full name (as it should be shown in outgoing emails) and your email address. As no password is used yet remove the "Remember password" tick and go on by clicking the small "Configure manually" link, which opens more options below:
|
|
|
|
|
|
|
|
For "INCOMING SERVER" set the "Hostname" to `outlook.office365.com`, the "Port" to `993` and select `SSL/TLS` in the "Connection security" dropdown if that does not happen automatically. For "Authentication method" select `OAuth2`.
|
|
|
|
|
|
|
|
For "OUTGOING SERVER" set the "Hostname" to `smtp.office365.com`, the "Port" to `587` and select `STARTTLS` in the "Connection security" dropdown. For "Authentication method" select `OAuth2` and then finish by clicking on "Done".
|
|
|
|
|
|
|
|
This is followed by a Microsoft login page where you need to enter your normal PSI AD/Windows password, maybe asking for second factor authentification (Authenticator app or token code).
|
|
|
|
|
|
|
|
With successful authentication you then close the "Account Setup" tab and enjoy the inbox or use one of the direct links for further configuration tuning, for some of them see the next two chapters.
|
|
|
|
|
|
## Use O365 Default Folders
|
|
|
|
Thunderbird and O365 use by default different folders for sent and deleted messages.
|
|
|
|
|
|
|
|
Via the hamburger menu at the top right open the "Account Settings" window.
|
|
|
|
|
|
### Folder for Deleted Messages
|
|
|
|
|
|
|
|
Then select for your account "Server Settings" and there select the "Deleted Items" entry in the dropdown menu "When I delete a message: Move it to this folder:".
|
|
|
|
This only needs to be done once, because after Thunderbird has marked the folders once on the server any other Thunderbird instance connecting to it will automatically use the correct folder.
|
|
|
|
|
|
### Folder for Sent Messages
|
|
|
|
|
|
|
|
O365 seams to automatically put on server side a copy into the "Sent Items" folder, so Thunderbird does not need to do so.
|
|
Go to "Copies & Folders" of your account and untick below "When sending messages, automatically:" the "Place a copy in:" option.
|
|
|
|
Best you send now a test message and check if you get a copy in "Sent Items".
|
|
|
|
|
|
## Addressbook with PSI Email Adresses
|
|
|
|
|
|
|
|
Open again the "Settings".
|
|
|
|
|
|
|
|
There type `directory` into the search box at the top right. Then select below the "Directory Server" checkbox, followed by clicking the "Edit Directories..." button.
|
|
|
|
|
|
|
|
On the newly opened dialog click on "Add".
|
|
|
|
|
|
|
|
Here fill in the following:
|
|
Name: `PSI AD`
|
|
Hostname: `d.psi.ch`
|
|
Base DN: `ou=PSI,dc=d,dc=psi,dc=ch`
|
|
Port number: `636`
|
|
Bind DN: `CN=$USER,OU=users,OU=psi,DC=d,DC=psi,DC=ch`, where you replace `$USER` with your Windows/AD login name.
|
|
|
|
Also select the "Use secure connection (SSL)" checkbox.
|
|
|
|
Next click on the "Advanced" tab.
|
|
|
|
|
|
|
|
Here set the "Search filter" to `(mail=*)`, then press "OK".
|
|
|
|
|
|
|
|
|
|
Another time click "OK"
|
|
|
|
|
|
|
|
Now select in the "Directory Server" dropdown the newly added `PSI AD` directory.
|
|
|
|
|
|
|
|
|
|
Now open the "Config Editor", you find it fastest by entering `editor` at the search field in the top right.
|
|
|
|
|
|
|
|
Therein search for `displayname`
|
|
|
|
|
|
|
|
and on the line "ldap_2.servers.default.attrmap.DisplayName" click onto the edit button on the right.
|
|
|
|
|
|
|
|
Now change the value to `displayName`. Save it with the save button on the right side. Then close the "Config Editor" and the "Settings" tab. Then close Thunderbird as the last configuration change is only active after restart.
|
|
|
|
The next time you write a new message and enter something into the "To" line,
|
|
|
|
|
|
|
|
you need to enter your Windos/AD password and then it will also search the PSI wide user directory.
|
|
|
|
|
|
## Calendar Integration
|
|
|
|
The calendar can be synchronized using the [TbSync](https://github.com/jobisoft/TbSync) add-on.
|
|
|
|
|
|
|
|
Open the hamburger menu at the top right and select "Add-ons and Themes".
|
|
|
|
|
|
|
|
In the Add-on Manager search in the top right search box for `tbsync`.
|
|
|
|
|
|
|
|
In the result list below click on the button "+ Add to Thunderbird" for the "TBSync" result line.
|
|
|
|
|
|
|
|
Now click on "Add"
|
|
|
|
|
|
|
|
and "OK.
|
|
|
|
|
|
|
|
Next we also need the connector to O365, so please also look for the "Provider for Exchange ActiveSync" and click on that line again the button "+ Add to Thunderbird".
|
|
|
|
|
|
|
|
Here again click on "Add"
|
|
|
|
|
|
|
|
and "OK".
|
|
|
|
|
|
|
|
To configure TbSync click onto "TbSync: Idle" on very right in the footer of the Thunderbird window.
|
|
|
|
|
|
|
|
To add a new account, open the dropdown "Account actions" at the bottom left. Therein select "Add new account" and "Exchange ActiveSync".
|
|
|
|
|
|
|
|
In this dialog select "Microsoft Office 365", then at "Account name" add suitable name for the calendar, followed by the respective email address in the field "User name (email address)". Finish with clicking onto "Add account".
|
|
|
|
|
|
|
|
Now authenticate with Microsoft.
|
|
|
|
|
|
|
|
Now with the account set up enable the checkbox "Enable and synchronize this account".
|
|
|
|
|
|
|
|
In the now newly shown configuration pane select the parts you want to synchronize (probably "Calendar", maybe also "Contacts".
|
|
Further below set the "Periodic synchronization (in minutes)" to a value like `10` to allow for automatic synchronization.
|
|
Now start manually a synchronization by pressing the "Synchronize Now" button.
|
|
|
|
|
|
|
|
Now all "Status" should be "OK". Close the "TbSync account manager" dialog.
|
|
|
|
|
|
|
|
|
|
Finally you can enjoy your calendar.
|
|
|