Support Microsoft 365 User Email Aliases

This article describes how to configure your SharePoint Online security identities so that your SharePoint Online repository’s content permissions are respected when a user logs in to a Coveo-powered search interface using a Microsoft 365 email alias.

Users may have email aliases assigned to their primary email address in your Microsoft 365 business account, such as to support different corporate domains. If your SharePoint Online source is configured to replicate your repository’s permission system, Coveo enforces your repository’s content permissions based only on a user’s primary email address by default.

However, you can configure your SharePoint Online security identity to map user email aliases to their corresponding primary email addresses. This ensures that your repository’s content permissions, which are associated to a user’s primary email address in Microsoft 365, also apply when a user logs in to a Coveo-powered search interface using an email alias.

  1. On the Security Identities (platform-eu | platform-au) page, click the Claims to Email security identity for SharePoint Online, and then click More > Edit JSON in the Action bar.

  2. Add the following parameter in the JSON configuration parameters section:

    "MapAliases": {
        "sensitive": false,
        "value": true
    }
  3. Click Save.

  4. Refresh the Claims to Email provider for the mapping to take effect.

What's next for me?