Files
gitea-pages/user-guide/thunderbird_for_o365.md

10 KiB

Configure Thunderbird for 0ffice365

This guide shows how to access e-mail, address book and calendar with Thunderbird.

Account and MFA ready?

Before connecting to Thunderbird to Office365, you need to have your MFA (Multi-Factor-Authentication) token/app configured.

If you use an app or SMS, then you can set it up directly at Microsoft. Note that when you select the app and use "Use verification code", then you can also use 3rd party OTP apps.

For all the options check out the internal knowledge base article

Software Installed?

The package thunderbird needs to be installed before starting.

Import PSI TLS Interception CA Certificate

Inside the PSI network access to E-Mail services using IMAP is protected by automatic malware scanning.

You get the certificate in a zip file and unpack it.

Open Thunderbird. If this is your first account, it will show a account setup assisant which you can exit or close.

Open Settings

Then open the hamburger menu at the top right and select "Settings".

Search for Certificate Settings

There type certificate into the search box at the top right. Then press below the "Manage Certificates..." button.

Certificate Manager Dialog

Open the "Authorities" tab.

Search for Certificate Settings

Here click on "Import..." and then select the previously downloaded and unpacked file "cert_PSI_FW_SSL_Scanner_TRUST.crt".

Trust Certificate

Now tick the checkbox "Trust this CA to identify websites" and confirm this and the previous dialog with "OK". Finally close the "Settings" tab.

Configure Your Mail Account

To add a new account open the hamburger menu on the top right. There choose "New" -> "Existing Mail Account...".

Set Up Your Existing Email Address

Here please enter first the full name (as it should be shown in outgoing emails) and your email address. As no password is used yet remove the "Remember password" tick and go on by clicking the small "Configure manually" link, which opens more options below:

Incoming Server Options

For "INCOMING SERVER" set the "Hostname" to outlook.office365.com, the "Port" to 993 and select SSL/TLS in the "Connection security" dropdown if that does not happen automatically. For "Authentication method" select OAuth2.

Outgoing Server Options

For "OUTGOING SERVER" set the "Hostname" to smtp.office365.com, the "Port" to 587 and select STARTTLS in the "Connection security" dropdown. For "Authentication method" select OAuth2 and then finish by clicking on "Done".

OAuth2 Login

This is followed by a Microsoft login page where you need to enter your normal PSI AD/Windows password, maybe asking for second factor authentification (Authenticator app or token code).

Done

With successful authentication you then close the "Account Setup" tab and enjoy the inbox or use one of the direct links for further configuration tuning, for some of them see the next two chapters.

Use O365 Default Folders

Thunderbird and O365 use by default different folders for sent and deleted messages.

Open Account Settings

Via the hamburger menu at the top right open the "Account Settings" window.

Folder for Deleted Messages

Account Settings for Deleted Messages

Then select for your account "Server Settings" and there select the "Deleted Items" entry in the dropdown menu "When I delete a message: Move it to this folder:".

This only needs to be done once, because after Thunderbird has marked the folders once on the server any other Thunderbird instance connecting to it will automatically use the correct folder.

Folder for Sent Messages

No Sent Messages Copy

O365 seams to automatically put on server side a copy into the "Sent Items" folder, so Thunderbird does not need to do so. Go to "Copies & Folders" of your account and untick below "When sending messages, automatically:" the "Place a copy in:" option.

Best you send now a test message and check if you get a copy in "Sent Items".

Addressbook with PSI Email Adresses

Open Settings

Open again the "Settings".

Search for Directory

There type directory into the search box at the top right. Then select below the "Directory Server" checkbox, followed by clicking the "Edit Directories..." button.

Add new Directory

On the newly opened dialog click on "Add".

Edit Directory Settings

Here fill in the following:
Name: PSI AD
Hostname: d.psi.ch
Base DN: ou=PSI,dc=d,dc=psi,dc=ch
Port number: 636
Bind DN: CN=$USER,OU=users,OU=psi,DC=d,DC=psi,DC=ch, where you replace $USER with your Windows/AD login name.

Also select the "Use secure connection (SSL)" checkbox.

Next click on the "Advanced" tab.

Edit Advanced Directory Settings

Here set the "Search filter" to (mail=*), then press "OK".

Close Directory Settings

Another time click "OK"

Select PSI AD Directory

Now select in the "Directory Server" dropdown the newly added PSI AD directory.

Config Editor

Now open the "Config Editor", you find it fastest by entering editor at the search field in the top right.

Config Editor Opened

Therein search for displayname

Config Editor Search

and on the line "ldap_2.servers.default.attrmap.DisplayName" click onto the edit button on the right.

Change DisplayName

Now change the value to displayName. Save it with the save button on the right side. Then close the "Config Editor" and the "Settings" tab. Then close Thunderbird as the last configuration change is only active after restart.

The next time you write a new message and enter something into the "To" line,

Directory Password

you need to enter your Windos/AD password and then it will also search the PSI wide user directory.

Calendar Integration

The calendar can be synchronized using the TbSync add-on.

Open Add-on Manager

Open the hamburger menu at the top right and select "Add-ons and Themes".

Search tbsync in Add-on Manager

In the Add-on Manager search in the top right search box for tbsync.

Install tbsync in Add-on Manager

In the result list below click on the button "+ Add to Thunderbird" for the "TBSync" result line.

Install tbsync in Add-on Manager

Now click on "Add"

Installed tbsync in Add-on Manager

and "OK.

Installed tbsync in Add-on Manager

Next we also need the connector to O365, so please also look for the "Provider for Exchange ActiveSync" and click on that line again the button "+ Add to Thunderbird".

Install Provider for Exchange ActiveSync in Add-on Manager

Here again click on "Add"

Install Provider for Exchange ActiveSync in Add-on Manager

and "OK".

Open TbSync

To configure TbSync click onto "TbSync: Idle" on very right in the footer of the Thunderbird window.

Add Exchange ActiveSync

To add a new account, open the dropdown "Account actions" at the bottom left. Therein select "Add new account" and "Exchange ActiveSync".

Enter information for Exchange ActiveSync account

In this dialog select "Microsoft Office 365", then at "Account name" add suitable name for the calendar, followed by the respective email address in the field "User name (email address)". Finish with clicking onto "Add account".

Authenticate at O365

Now authenticate with Microsoft.

Enable O365 calendar sync

Now with the account set up enable the checkbox "Enable and synchronize this account".

Configure O365 calendar sync

In the now newly shown configuration pane select the parts you want to synchronize (probably "Calendar", maybe also "Contacts". Further below set the "Periodic synchronization (in minutes)" to a value like 10 to allow for automatic synchronization. Now start manually a synchronization by pressing the "Synchronize Now" button.

O365 calendar sync done

Now all "Status" should be "OK". Close the "TbSync account manager" dialog.

O365 calendar sync done

Finally you can enjoy your calendar.