Video Walkthrough
Please follow along with the video walkthrough below, demonstrating how you can create an Application Client Secret, when planning to send WordPress emails from any Microsoft 365 (Shared) Mailbox using Microsoft Graph.
Create a client secret in Microsoft Entra
- To continue with the configuration, you also need to create an Application Client Secret. Together with the Application (Client) ID, it allows your WordPress site to authenticate with Microsoft Entra ID.
- Return to the Microsoft Entra portal – for example by clicking the View in Entra Portal link next to the Application Client ID – and open your App Registration.
- Navigate to Certificates & secrets.
- Click New client secret to create a new secret.
- When creating the client secret:
- Choose how long the secret should be valid for.
- The default expiration is 180 days.
- Click Add to create the secret.
Copy and store the secret value
- Once the secret is created Copy the Secret Value (not the Secret ID).
- Store this value securely, as it will not be shown again.
Make sure to copy the value of the secret that you just created and not the Secret ID. You wouldn’t be the first!
Keep track of the expiration date
- Take note of the expiration date of the secret.
- Before the expiration date you must:
- Return to the Certificates & secrets page.
- Create a new client secret.
- Copy the new secret’s value and update it in WordPress as explained below.
Configure the secret in WPO365
- Go back to the Mail configuration page in the WPO365 plugin.
- Paste the copied secret value into the Application Client Secret field.
Once a password expires, it cannot be used and the plugin will fail to retrieve ID and access tokens. Therefore you must renew this password right before it expires and update the plugin’s configuration accordingly. WPO365 can also send you a notification 30 days before a secret expires.