Connect Microsoft Outlook with data federation

This page describes how to connect Microsoft Outlook to Gemini Enterprise using data federation.

Use the following procedure to search your Microsoft Outlook account using federated search.

Before you begin

Perform the following steps before connecting to your Microsoft Outlook data store using federated search.

  1. Register Gemini Enterprise as an OAuth 2.0 application in Microsoft Entra ID. Copy the following credentials:

    • Client ID
    • Client secret
    • Tenant ID

  2. Configure the following Microsoft Graph application permissions with the consent of a Microsoft Outlook administrator:

    Permission

    Type

    Description

    Mail.Read

    Delegated

    Read user mail

    Calendars.Read

    Delegated

    Read user calendars

    Contacts.Read

    Delegated

    Read user contacts

  3. Add the following URLs as web callback URLs:

    • https://vertexaisearch.cloud.google.com/console/oauth/default_oauth.html
    • https://vertexaisearch.cloud.google.com/oauth-redirect

Create a federated search connector with Outlook

Use the following steps for Google Cloud console to perform federated search through Microsoft Outlook from Gemini Enterprise.

  1. In the Google Cloud console, go to the Gemini Enterprise page.

    Gemini Enterprise

  2. In the navigation menu, click Data Stores.

  3. Click Create Data Store.

  4. On the Select a data source page, select Outlook Federated to connect your third-party data source.

  5. Under Authentication settings:

    1. Enter the Client ID, Client secret, and Tenant ID.

    2. Click Login.

    3. Click Continue.

      Log in using OAuth 2.0 credentials
      Login using the copied OAuth 2.0 credentials

  6. Select the entities you want to include.

    1. Select from Mail, Calendar, and Contact.

    2. Click Continue.

      Select entities to include
      Select the Microsoft Outlook entities you want to include

  7. Select a region for your data source.

  8. Enter a name for your data source.

  9. Click Create. Gemini Enterprise creates your data store and displays it on the Data Stores page.

After the data store is created, go to the Data Stores page and click your data store name to see the status. When the Connector state changes from Creating to Active, the federated search connector is ready to be used.

User authorization

After creating a federated search data store, the Gemini Enterprise source management panel lists it as one of your data sources. If you haven't previously authorized Gemini Enterprise, you can't select the data source. Instead, an Authorize button appears.

Authorize Gemini Enterprise to access your new data source
Authorize Gemini Enterprise to access your new data source

To initiate the authorization flow:

  1. Click Authorize. You are redirected to the Outlook authorization server.

  2. Sign in to your account.

  3. Click Grant access. After granting access, you are redirected back to Gemini Enterprise to complete the authorization flow. Gemini Enterprise obtains the access token and uses it to access the Microsoft Outlook search.

Query execution

After you authorize Microsoft Outlook, when you enter a search query:

  1. Gemini Enterprise sends your search query to the Microsoft Graph API.

  2. Gemini Enterprise blends the results with those from other sources and displays them.

Data handling

When using third-party federated search, your query string is sent to the third-party search backend. These third parties may associate queries with your identity. If multiple federated search data sources are enabled, the query might be sent to all of them.

Once the data reaches the third-party system, it is governed by that system's terms of service and privacy policies.