Microsoft Email Authentication

Bigtincan & Microsoft users now have access to a more secure and convenient Hubshare experience through the application of Modern Authentication. Modern Authentication, based upon OAuth 2.0 protocol (https://oauth.net/2/), provides a more secure method of content sharing outside of Bigtincan Hub through the Hubshare process. Admins can easily migrate from Basic Authentication to Modern Authentication for Microsoft without the additional step of entering login credentials for end users. When users share from the Hub using Modern Authentication the Hubshare will be recorded in their ‘sent’ folder so they have a complete history of their interaction with recipients in the email system. Upgrading to Modern Authentication will provide Microsoft users with a more secure and convenient experience in the Hub Platform.

 

Learning Objectives: After reading this article, Microsoft users will be able to: 

  1. Craft and send an Email within the Content Hub.

  2. Gain a basic understanding of OAuth 2.0 Protocol. 

  3. Apply that understanding to heightened security measures (Including an install guide).

 

Vocab Terms

Modern Authentication

A combination of authentication and authorization methods between a client and a server.

Token

An authentication token allows internet users to access applications, services, websites, and application programming interfaces (APIs) without having to enter their login credentials each time they visit.

Tokenization

Tokenization is the process of turning a meaningful piece of data, such as an account number, into a random string of characters called a token that has no meaningful value if breached.

OAuth Protocol 2.0

The OAuth 2.0 authorization framework is a protocol that allows a user to grant a third-party web site or application access to the user's protected resources, without necessarily revealing their long-term credentials or even their identity.

 

Sending Emails from within the Hub

IMPORTANT: Before Microsoft users can operate within the Hub using Modern Authentication, they must set up modern authentication in Exchange Online. See link below for further information and instructions.

https://docs.microsoft.com/en-us/exchange/clients-and-mobile-in-exchange-online/outlook-for-ios-and-android/setup-with-modern-authentication

Once installed, you may send content that exists within the Hub via the HubShare (Link to Hubshare Article) process. 

  1. Navigate to the story you wish to share.

  2. Select the “Share” option in the upper right corner of the Story’s Detail Page.

  3. Fill in the recipient(s) email address.

  4. Add any additional content.

  5. Select Share.

Just like that, your recipient will have access to the content shared. No need for additional steps nor login credentials. Not only does the Modern Authentication process create a more convenient sharing experience, it also bolsters the user’s security. Let’s talk about how the Process of Modern Authentication utilizes OAuth Protocol. 

OAuth Protocol & Security

OAuth Protocol is a simple protocol that allows users to access resources without sharing passwords. The owner of the resource may share the resource with the client on one site without requiring their login credentials, but allocates username and password tokens instead. 

This is called Tokenization: the process of turning sensitive data, a user’s login credentials, into a string of random characters. So how does tokenization improve security? By using tokenization, businesses do not have to capture sensitive information in their input fields, store that sensitive information in internal databases, or transmit the data through their information systems. This safeguards businesses from security breaches. In the event of a security breach with Basic Authentication, the perpetrator could have access to the user’s login credentials and subsequently their account information. With Modern Authentication, the perpetrator would only access the random, meaningless token. Tokens also lend themselves to mass cancelling, solidifying the security measures while not disrupting the user’s account. 

 

Other Articles a user might want to read 

  1. https://oauth.net/2/

  2. Set Up a New OAuth 2.0 Integration ​​​​​​​​​​​​​​

Was this article helpful?
0 out of 0 found this helpful