Sending Mail through Graph API if local disk is full by leveraging Azure Arc Managed Identity and Keyvault

Padure Sergio

2022-09-25

Page content

Introduction

This is a request coming from Discord: how to send an email through Graph API if the local disk is full?

Here is the architecture we’re looking at:

The flow is going to be:

The script connects to Azure Powershell using the Managed Identity available through Azure Arc
The script uses Get-AzKeyVaultSecret to pull the Application secret from the key vault
The script sends an API call to request a bearer token to impersonate the Application
The script checks if any of the local disks are full
The script uses the previously-obtained bearer token to send mail through Graph API if a disk is full

In my case it’s been done to C:\Temp through Github Desktop:

Open the folder in VsCode and duplicate EmailConfig.json.example to EmailConfig.json:

Fill in the empty brackets with the correct values from the previously created resources:

AppID: Application ID of the Mail Sender Application
KeyVaultSecretName: The name of the Secret in Key Vault that contains the Application Secret
KeyVaultName: The name of the Key Vault
EmailSender: The email address from which the email will be sent
EmailReceiver: The email address to which the email will be sent
TenantID: The ID of your Azure AD tenant

Save the file and exit

Open a Powershell window as admin and go to where the repository has been cloned and run Send-MessageIfDiskFull.ps1:

Et voilà! The script sends the email with the disk whose free disk capacity is less than 10%!

This concludes the 3 part series concerning email sending through Graph API if disk is full.