Microsoft Outlook OAuth2 API - Least permissions

EvDevWo · August 26, 2025, 11:25am

Hi all,

I’m trying to configure the Microsoft Outlook OAuth2 API in n8n. When setting it up, it asks for a large set of delegated permissions, for example:

Sign in as you
Maintain access to data you have given it access to
Read your contacts
Have full access of your contacts
Read your calendars
Read calendars you can access
Have full access to your calendars
Read and write access to your mail
Read and write mail you can access
Send mail as you
Send mail on behalf of others or yourself
Read your mailbox settings

For my use case I only want the delegated permission such as:

Send mail as you

But n8n (or the API setup) seems to automatically request the full set of Outlook/Microsoft Graph scopes.

Thanks!

moosa · August 26, 2025, 7:56pm

It is because app which n8n has created is for all use cases.
you can use these same credentials (keys) to do other stuff too.
if you want one specific permissions you need to create your own app.

EvDevWo · August 27, 2025, 5:23am

Hi @moosa thanks for your answer. I run N8N locally so i have my own Azure App Registration with only mail.send but still i get the question for all the permissions. Is this what you mean?

moosa · August 27, 2025, 6:37pm

ooh I see, by default n8n asks for all permissions.
what you can do is create new credentials:

and give required scope:

hope this addresses your concern!

moosa · August 27, 2025, 6:45pm

then send mail using:

system · November 25, 2025, 6:46pm

This topic was automatically closed 90 days after the last reply. New replies are no longer allowed.