跳转至

Microsoft Exchange

The Microsoft Exchange connector is a Palantir-provided driver for Microsoft Exchange.

To create a new Microsoft Exchange source, follow the standard setup flow for Palantir-provided drivers, then use the sections below for Microsoft Exchange-specific configuration and networking. For the complete property reference, see the official Microsoft Exchange driver documentation ↗.

Configuration

The properties below are mandatory or recommended.

Property Required? Description Default
DefaultGroups Mandatory Determines the default group context when accessing group-scoped resources in Microsoft Exchange. AllGroups
DefaultUser Mandatory Determines the default user context when accessing user-scoped resources in Microsoft Exchange. CurrentUser
Server Mandatory Specifies the URL of the Microsoft Exchange server to connect to. https://outlook.office365.com/EWS/Exchange.asmx
AuthScheme Recommended Specifies the authentication scheme used to connect to the Microsoft Exchange server. AzureServicePrincipal
AzureTenant Recommended Identifies the Microsoft Exchange tenant being used to access data. Accepts either the tenant's domain name (for example, contoso.onmicrosoft.com ) or its directory (tenant) ID.
GroupId Recommended Specifies the Id of a Microsoft Exchange group whose data you want to access.
InitiateOAuth Recommended Specifies the process for obtaining or refreshing the OAuth access token, which maintains user access while an authenticated, authorized user is working. GETANDREFRESH
OAuthClientId Recommended Specifies the client ID (also known as the consumer key) assigned to your custom OAuth application. This ID is required to identify the application to the OAuth authorization server during authentication.
OAuthClientSecret Recommended Specifies the client secret assigned to your custom OAuth application. This confidential value is used to authenticate the application to the OAuth authorization server. (Custom OAuth applications only.)
Platform Recommended Specifies the Microsoft Exchange platform to target when establishing a connection. Exchange_Online
Schema Recommended Specifies the schema to use when connecting to the Microsoft Exchange platform. EWS
UserId Recommended Specifies the Id of a Microsoft Exchange user whose data you want to access.

Networking

The table below lists the domains that the source needs to be able to access in order to successfully run.

For each domain, add a corresponding egress policy. If the source is hosted on-premises and not directly reachable from Foundry, use an agent proxy egress policy instead; the agent host itself must also be able to reach the listed domains. See using an agent as a proxy for details.

Domain Required
\ Always. For Exchange Online, use Server=' https://outlook.office365.com/EWS/Exchange.asmx'
outlook.office365.com If Platform=Exchange_Online AND Schema=EWS
graph.microsoft.com If Platform=Exchange_Online AND Schema=MSGraph
login.microsoftonline.com If Platform=Exchange_Online (default) AND AuthScheme=AzureAD, AzureServicePrincipal, or AzureServicePrincipalCert
\:88 If AuthScheme=Negotiate
\:88 If AuthScheme=Negotiate AND Kerberos topology uses multiple realms

中文翻译

Microsoft Exchange

Microsoft Exchange 连接器是 Palantir 为 Microsoft Exchange 提供的驱动程序

要创建新的 Microsoft Exchange 数据源,请遵循Palantir 提供驱动程序的标准设置流程,然后使用以下各节进行 Microsoft Exchange 特定的配置和网络设置。有关完整的属性参考,请参阅官方 Microsoft Exchange 驱动程序文档 ↗

配置

以下属性为必填或推荐项。

属性 是否必填 描述 默认值
DefaultGroups 必填 确定访问 Microsoft Exchange 中组范围资源时的默认组上下文。 AllGroups
DefaultUser 必填 确定访问 Microsoft Exchange 中用户范围资源时的默认用户上下文。 CurrentUser
Server 必填 指定要连接的 Microsoft Exchange 服务器的 URL。 https://outlook.office365.com/EWS/Exchange.asmx
AuthScheme 推荐 指定用于连接 Microsoft Exchange 服务器的身份验证方案。 AzureServicePrincipal
AzureTenant 推荐 标识用于访问数据的 Microsoft Exchange 租户。接受租户域名(例如 contoso.onmicrosoft.com)或其目录(租户)ID。
GroupId 推荐 指定要访问其数据的 Microsoft Exchange 组的 ID。
InitiateOAuth 推荐 指定获取或刷新 OAuth 访问令牌的过程,该令牌在已认证授权用户工作时维持其访问权限。 GETANDREFRESH
OAuthClientId 推荐 指定分配给自定义 OAuth 应用程序的客户端 ID(也称为消费者密钥)。此 ID 用于在身份验证过程中向 OAuth 授权服务器标识应用程序。
OAuthClientSecret 推荐 指定分配给自定义 OAuth 应用程序的客户端密钥。此机密值用于向 OAuth 授权服务器验证应用程序的身份。(仅限自定义 OAuth 应用程序。)
Platform 推荐 指定建立连接时要定位的 Microsoft Exchange 平台。 Exchange_Online
Schema 推荐 指定连接到 Microsoft Exchange 平台时要使用的模式。 EWS
UserId 推荐 指定要访问其数据的 Microsoft Exchange 用户的 ID。

网络设置

下表列出了数据源为成功运行而需要能够访问的域名。

对于每个域名,请添加相应的出站策略。如果数据源部署在本地且无法从 Foundry 直接访问,请改用代理出站策略;代理主机本身也必须能够访问所列出的域名。详情请参阅使用代理作为代理服务器

域名 必需条件
\ 始终必需。对于 Exchange Online,请使用 Server='https://outlook.office365.com/EWS/Exchange.asmx'
outlook.office365.com 如果 Platform=Exchange_OnlineSchema=EWS
graph.microsoft.com 如果 Platform=Exchange_OnlineSchema=MSGraph
login.microsoftonline.com 如果 Platform=Exchange_Online(默认)且 AuthScheme=AzureADAzureServicePrincipalAzureServicePrincipalCert
\:88 如果 AuthScheme=Negotiate
\:88 如果 AuthScheme=Negotiate 且 Kerberos 拓扑使用多个领域