π How it works (What & Why)
To enable recruiters to send emails and schedule interviews directly from the platform, Robin requires specific API permissions. As an administrator, you ensure this connection is securely established through a one-time approval (Admin Consent).
β
βοΈ Which permissions does Robin request?
Based on the integration with Microsoft Graph and Google API, Robin requests the following rights:
Email functionality:
Mail.Send: To send emails from the user's corporate email address.
Mail.ReadWrite: To make sent Robin emails visible in 'Sent items', without accessing other mailbox content.
Read user's email: To sync candidate replies with the candidate file in Robin.
Calendar & Meetings:
Full access to calendars: To retrieve free time slots and schedule interviews directly.
Read and create user's online meetings: To automatically generate Teams or Google Meet links for appointments.
General:
offline_access: To stay connected, so users do not have to log in again daily.
Sign in and read user profile: For a secure Single Sign-On (SSO) experience.
π οΈ Configuration (Steps for Microsoft/Azure)
For organizations using Microsoft 365, you can grant central access via the Microsoft Entra admin center (the Azure Portal):
Log in: Log in as a Global Admin in the Azure Portal.
βNavigate: Go to Enterprise applications.
βSearch for the application: Search for the Recruit Robin application.
βπ‘ Important tip: If the Recruit Robin app is not currently visible in Entra ID, please request an email connection from within the app first. After doing this, Entra will appear in the list, ensuring you have the correct one. From there, you can continue following the configuration steps below.
βPermissions: Under the Security menu, click on Permissions.
βCheck status: Do you see a list of permissions, but the button at the top is still blue? This means the rights have been requested but are not yet active for the organization. As long as the "Granted through" column does not say Admin consent, users will still be prompted for manual approval (and often blocked).
βGrant consent: Click the blue button Grant admin consent for [Organization Name]. A pop-up will open; log in and click Accept. The status in the list will now change to "Admin consent".
β¨ Output & user experience
Once Admin Consent is successfully granted, the integration is instantly active for the entire organization. Users no longer need to request individual approval and can immediately and securely send emails and schedule meetings from the interface.
β
π The limits we have
Google Workspace: If your organization uses Google Workspace, the approval process is different. The admin must authorize the Robin app (or our integration partner Nylas) in the Google Admin Console under Security > API Controls > Manage Third-Party App Access and add the Client ID of the app as 'Trusted'.
Other providers (IMAP/SMTP): No central admin consent is required here. The IT department only needs to verify that the correct server settings and ports are open so that users can connect their inboxes individually.
β FAQ
What should I check regarding security policies or errors? Verify if there are any active Application Access Policies restricting access to specific mailboxes. Additionally, users may encounter a white screen if the browser blocks pop-ups from microsoftonline.com or google.com during activation.
βΉοΈ Want to know more?
If you have questions or something isnβt working, contact our support team β weβre happy to help.