Skip to main content
Microsoft Sign-In

Sign in to Marai with
Microsoft

Access Marai with any Microsoft account — Personal (Outlook.com, Hotmail, Live) or Microsoft 365 corporate — via the official OAuth flow verified against Microsoft’s RS256 JWKS. No extra passwords, no duplicate forms, in under two seconds.

  • PERSONAL+365

    Personal and Microsoft 365 accounts

    Outlook.com, Hotmail, Live and every Microsoft 365 corporate account in your organization.

  • RS256

    Token verified by official JWKS

    Every token is cryptographically validated against Microsoft’s published RS256 JWKS. Zero client trust.

  • ~2 s

    Instant linking

    Click "Continue with Microsoft", authorize, and the account is created or linked instantly. No waiting.

What is the Marai + Microsoft integration?

It is a social sign-in via the official Microsoft OAuth 2.0 + OpenID Connect protocol. It lets you access Marai using your personal Outlook.com, Hotmail or Live account, or any Microsoft 365 corporate account. Marai only requests basic identity scopes (openid, email, profile) and verifies every token against Microsoft’s official RS256 JWKS. It does not access your mail, calendar, files or contacts.

How does it work?

Three steps to access Marai with no extra password. The OAuth flow is handled directly by Microsoft; Marai only receives the identity confirmation.

Click "Continue with Microsoft"

On the Marai sign-in or sign-up screen, choose the Microsoft option. The official Microsoft Sign-In window opens, managed via MSAL.

Authorize the basic scopes

Microsoft shows the scopes Marai requests: openid, email and profile. No access to mail, calendar or files. Click "Accept" and the window closes automatically.

Marai creates or links your account

If it is your first time, Marai creates your account with the public profile data. If you already had an account with the same email, it gets linked and you can access via any method.

Exact scopes Marai requests

Full transparency. These are the only three scopes Marai requests from Microsoft. Anything not listed here is not requested.

  • openid

    Anonymous unique identifier. Lets Marai know it is you across sessions without exposing personal data.

  • email

    Your email address. Required to create or link your Marai account with the same identity you already use.

  • profile

    Full name and avatar to display your identity in the Marai dashboard. No date of birth, location or phone number.

What Marai does NOT request

  • Access to Outlook mail
  • Access to Outlook calendar
  • Access to OneDrive or files
  • Access to contacts or people
  • Send-on-behalf permissions
  • Azure AD directory data

Benefits of signing in with Microsoft

  • One-click access

    No need to remember another password. If you are already signed in to Microsoft, you access Marai without typing anything.

  • Enterprise SSO compatible

    If your organization uses Microsoft 365 with Single Sign-On or multi-factor authentication, Marai respects those policies automatically.

  • Same identity, multiple methods

    You can sign in with password, Google or Microsoft on the same Marai account. Identity is bound to the verified email.

  • Complies with IT policy

    Your Microsoft credentials never travel through Marai servers. All authentication is processed by Microsoft directly.

Identity cryptographically verified

Every token received from Microsoft is cryptographically verified against Microsoft’s official RS256 JWKS. Marai never stores long-lived tokens: it uses its own short-lived httpOnly session cookies signed with its own secret. Complies with OAuth 2.0, OpenID Connect and EU GDPR.

  • Official OAuth 2.0
  • OpenID Connect
  • Verified RS256 JWKS
  • GDPR compliant
Sign in with Microsoft

Free plan forever. No credit card required.

More integrations: WhatsApp · Google Calendar · Stripe · Gmail · Zapier · Webhooks

Frequently asked questions

Which Microsoft accounts are supported?

Every account supported by Microsoft’s official MSAL flow: personal accounts (Outlook.com, Hotmail, Live), educational accounts (.edu) and Microsoft 365 / Azure AD corporate accounts. The integration uses Microsoft’s common endpoint and requires no per-tenant configuration.

Does Marai access my Outlook mail or calendar?

No. Marai only requests the "openid", "email" and "profile" scopes, which cover only basic identity (unique id, email and name). It does not access Outlook Mail, Outlook Calendar, OneDrive, contacts or any other Microsoft Graph resource.

Can I receive Outlook email notifications without using Sign-In?

Yes. Marai sends email notifications to any email address, including Outlook.com, Hotmail, Live and Microsoft 365 corporate. The email integration works even if you do not use Microsoft sign-in.

Can I unlink Microsoft after linking it?

Yes. From Settings > Account > Sign-in methods you can unlink Microsoft any time, as long as you have another method available (password or Google). If Microsoft were your only method, Marai asks you to set up an alternative first so you do not lose access.

Is Outlook Calendar synchronization available?

Not currently. Marai syncs bidirectionally with Google Calendar; Outlook Calendar sync is under evaluation but has no confirmed date. If you need to see appointments in Outlook, you can rely on email reminders (which work fine in Outlook) or configure a webhook that posts appointments to your corporate calendar.