Step 2b. Connected system configuration (SaaS)

Configuration for Business Central Online in another tenant, or with Dynamics 365

 

The OAuth authorization protocol is recommended for connection between SwissSalary and Business Central Online or Dynamics 365 applications.

 

I. Register an Azure Entra application for authentication for Business Central Online or Dynamics 365 applications

1.Log in to the Azure portal.

2.Enter “App registrations” in the search field, then click “New registration”.

3.Fill in the fields with the values below:

Name: Application display name. Example: “Business Central OAuth 2.0”

Supported account types: Select the option “Accounts in any organization directory (any Azure Entra directory – multi-tenant)”

Redirect URI (optional): Select “Web” in the “Select platform” field and enter the following URL in the field: “businesscentral.dynamics.com/OAuthLanding.htm”

4.Click “Register”.

 

 

II. Grant the registered application permissions API.ReadWrite.All for Dynamics 365 Business Central or AX.Full Access and OData.FullAccess for Dynamics 365 applications

1.Go to the “API permissions” menu item and click “Add permission”.

2.A. Business Central Online: Click the “Dynamics 365 Business Central” tile and then the “Application permissions” tile.

B. Dynamics 365 applications:  Click the “Dynamics ERP” tile and then the “Application permissions” tile.

3.A. Business Central Online: Check the “API.ReadWrite.All” option and click “Add permissions”.

B. Dynamics 365 applications:  Check the “Connector.FullAccess” option and click “Add permissions”.

 

Step 3. Create a client secret for your application.

1.Go to the “Certificates & Secrets” menu item and click “New client secret key”.

2.Fill in the fields with the values below:

Description: “Business Central Client Service”.

Valid until: Select the “Recommended: 180 days (6 months)” option.

3.Click “Add”.

4.Securely copy and save the code from the “Value” column.

 

Step 4. Add the created application to Business Central Online.

1.Open SwissSalary365.

2.Search for “Microsoft Entra Applications” in the search box and navigate to them and click “New”

3.Fill in the fields with the values below:

Client ID: Enter your “Client ID”. (See step x, item x)

Description: “Business Central OAuth 2.0”

Status: Select the “Activated” option.

4.Add the relevant permission sets on the “User Permission Sets” tab. The applications need permission sets with which Cloud Connector applications can read, edit or delete the tables to be synchronized.

5.Click “Consent” and select the account with the “Global Administrator” role in the dialog box, click “Accept” and then “OK”.