If you need to manage a Service Account, but your company security policy prohibits the use of Global Administrator account credentials in external applications, you must configure an Office 365 account manually.
Multi-factor authentication is not supported while accessing messages from Exchange Online Quarantine. If your account uses multi-factor authentication, consider using another account.
Create an Office 365 user account with the Security Admin role. This role is required for accessing messages from Exchange Online Quarantine. You can also use an existing Office 365 user account. At that, you must assign the Security Admin role to this user account manually.
Creating a Security Admin user account
The exact steps required to create an account vary depending on whether you have only Exchange Online or a hybrid deployment.
To create an account if you have only Exchange Online:
The Active users operation pane will be displayed on the right side of the window.
The Set up the basics window will open.
The Assign product licenses window will open.
The Optional settings window will open.
The Review and finish window will open.
Office 365 will create a new user account. You can review the specified details and close the window.
To create a user account in case of a hybrid deployment:
Assigning the Security Admin role to an existing user account
If you use an existing user account, you must assign the Security Admin role to this user account manually.
To assign the Security Admin role to a user account:
The Active users operation pane will be displayed on the right side of the window.
The user account information will open in a separate pane in the left part of the window.
The Manage admin roles pane will be displayed.
The Security Admin role will be assigned to the selected user account. You can review the specified details and close the pane.
After the Service Account has been configured, specify its credentials to access messages from Exchange Online Quarantine.
Page top