User Tools

Site Tools


oauth_mfa

Connectivity Guide

OAuth/MFA

This is a step-by-step guide in order to create a Client ID and Client Secret to connect with Dynamics 365.

Azure AD App Creation

Firstly, we must create an Azure AD app and set some parameters.

1. Head to https://portal.azure.com/#home

2. Log in using an account with administrator permissions.

3. In the Azure portal, expand the portal menu and select Azure Active Directory → App Registrations → New Registration

4. Within the Register an application page, enter your application's registration information:

a) Enter a suitable App Name

b) From Supported account types, select Accounts in any organizational directory (Any Azure AD directory - Multitenant) option

c) Set the Redirect URI to Public client/native(mobile/desktop).

d) Select Register to create an application.

5. Select Add a Redirect URI

6. You will be redirected to the below screen. Select Add a platform.

Within Configure platform, select Mobile and Desktop applications.

8. Select https://login.microsoftonline.com/common/oauth2/nativeclient and select Configure.

9. After configuration, you will be redirected to below screen.

10. Select Save.

11. On the Overview page, hover over the Application (client) ID value, and select the Copy to clipboard icon to copy the value. Save this elsewhere as you'll need this later.

12. Select the API permissions tab from the portal menu.

a) Select Add a permission.

b) Select Dynamics CRM from Microsoft APIs tab.

c) Select Delegated Permissions and check the user_impersonation permission.

d) Select Add Permissions at the bottom.

e) Again, select the API permissions tab from Portal Menu.

f) Select Grant admin consent as seen below.

13. Now we need to edit the Manifest.

a) Select Manifest from the portal menu.

b)Set allowPublicClient:true,.

c) Select Save.

This concludes the steps to complete the registration of your application in Azure Active Directory.

Creation of Application user and assigning role

15.

a) Configure Application user in Dynamics 365 Admin Centre

b) Sign in to the Power Platform admin center (https://admin.powerplatform.microsoft.com/environments)  as a System Administrator.

c) Select Environments, and then select an environment from the list.

d) Select Settings.

e) Select Users + permissions, and then select Users.

f) Find the appropriate user and select menu (3 dots) > Select Manage Security Roles.

g) Select DQGAdmin Role from the Role List and select Save.

Note: You will need to install the DQ for Dynamics Solution for the DQGAdmin Role.

h) Ensure the user has the sufficient permissions to impersonate other users and has access to all entities you wish to master.

Please share Client ID (Application ID) from Step 11 and redirect URL, Username and Password from Step15 with DQ Global.

oauth_mfa.txt · Last modified: 2022/11/14 16:51 by hayden.law