How To Set Up Private Infrastructure (OAuth) in Smartlead for Microsoft Outlook

Private Infrastructure allows you to connect Outlook mailboxes using your own Microsoft Azure OAuth app. This setup ensures secure authentication, branded user experience, and control over deliverability and mailbox reputation.

Before You Start
Please connect with your Smartlead Customer Success Manager (CSM) before creating your OAuth app. They’ll guide you through the steps to generate your Client ID and Client Secret correctly.
Mistakes here can affect your email deliverability and campaign performance, so we strongly recommend doing this with a CSM.

1. Register a New Application in Azure

Go to the Azure Portal and navigate to Azure Active Directory → App registrations
Click New registration
- Name your app (this can be your brand or website name—what your users will see when signing in)
- Choose Accounts in any organizational directory
- Click Register

2. Add Redirect URI

After registration, go to the app’s Authentication tab
Under Redirect URIs, choose Web and enter:

https://server.intellioauth.com/api/email-account/microsoft/callback

This URI is required for Smartlead to complete the OAuth handshake

3. Set API Permissions

Go to the API permissions section and add the following delegated permissions:

	Category Permissions
Microsoft Graph	- offline_access - openid - email - profile - User.Read - Mail.Send - Mail.ReadWrite - Mail.ReadWrite.Shared - Mail.Send.Shared

You should end up with 9 permissions total.

After adding the permissions, click Grant admin consent to authorize access for all users under your directory.

4. Generate Client Secret

Go to Certificates & Secrets
Click New client secret
- Add a description (e.g., Smartlead OAuth Secret)
- Choose an expiry duration (60–90 days is recommended for safety)
Copy the generated Client Secret immediately (you won't be able to view it again)

You should now have:

Application (client) ID
Client secret
Directory (tenant) ID

5. Add OAuth Credentials in Smartlead

Log in to your Smartlead admin account
Go to Profile → Settings → OAuth Configuration
Select Outlook
Paste your:
- Client ID
- Client Secret
Click Activate

If this feature is not visible, please contact the Smartlead team to enable Outlook OAuth configuration for your account.

6. Enable Access for Clients (Optional)

You can choose to allow your clients to connect their Outlook accounts using your private infrastructure
Toggle Allow clients to use this and click Update

Once enabled, clients will see the Outlook option in their email account connection flow, fully branded with your application details—no mention of Smartlead.

7. Connect Outlook Mailboxes Using Private Infrastructure

Go to Email Accounts → Connect Mailbox
Choose Private Infrastructure → Outlook
Authenticate with the branded OAuth flow

If everything is configured correctly, users will connect seamlessly under your domain and setup.

Similar to how you create Outlook OAuth, you can create Google OAuth too for setting up private infrastructure in Smartlead.

Set Up Google OAuth

FAQs

Q. Can I switch back to Smartlead’s shared OAuth?

Yes - delete your custom provider in OAuth Configuration and reconnect mailboxes using Smartlead OAuth.

Q. Does Smartlead store my client secret?

Only momentarily for validation; it is never stored long‑term.

Last updated: 6th Aug 2025

Help center