Microsoft made it easy for developer and users to register their own application and use Microsoft Graph. But how could you secure your tenant and protect your users or just keep track of all your applications and service principals? Is it enough to acquire an access token or do I need also permissions in Exchange? What protocols can I use? In this session you will learn how you can secure and keep control of your tenant and as developer you will get tips and tricks for optimizing your code interacting with Exchange Online objects.