The explanation was pretty amazing but just imagine where we would be without this video. I don't understand why Microsoft does this but it's almost like they are playing a practical joke on us. Here is a bunch of crap documentation and oh did I mention that certain important aspects are really hard to find and you won't get shit done unless you want to spend your entire life reading ms docs and trying to figure out why this shit is so ugly and difficult.
I'm a consultant and we sell software. Something I always say during sales and trainings: We shouldn't exist. The only reason our software is as popular as it is is because Microsoft's own back end is so unintuitive and complicated.
At about 4:30 in your video the Application ID URI shows with the domain name preceding a GUID. When I follow the steps in this video the Application ID URI is populated with just a GUID and it is the same as the Application ID. In the CRM UI the Application ID URI is not editable. Wondering if this is an issue.
Its probably pulling from what you have added in the Azure AD app registrations page. Sorry for a year late comment and hoping that this will be helpful to someone. . :)
Hello, I'm developing an ecommerce website (PHP) for a client who is already using Microsoft Dynamics to manage their own customers. After going through all of the related Dynamics API documentation, I am still left a bit confused - thus, how I found this great video. At 1:11 you state, "this Azure tenant is linked with the same Office 365 tenant that our Dynamics 365 org is in." Does this mean that, in order for my outside server/app to authenticate and make successful GET requests, my customer will need to generate the clientID/secret for me to use, or is this something I can do on my end and supply those things to them? In other words, can I follow the steps in this video on my own (from outside their Dynamics 'environment') and then just supply the credentials that Azure generates for me to my customer, who will then need to add them to their Dynamics setup in order to allow my server to authenticate and make the API requests? Apologies for the extremely long question.
Hello Scott, can we still use pre existing Service Accounts. We already have a few accounts in CRM but there doesn't seem to be a way to associate them with the App from CRM? Anther question would be can we have more than one account associated with an app?
Hi, My API is deployed in app service and I need to implement oauth to access BC. Do I need to follow this way or can I skip the user creation part?and also what should the redirect url I should be given, the azure appservice url?
Hi Scott, I am using Microsoft.PowerPlatform.Dataverse.Client SDK to interact with Dynamics WebApi from a Function App. I am able to successfully use OrganizationServiceContext to query data using LINQ syntax. However I am not able to use Early Bound Entity Classes to create entities via DataContext & SDK. Is this even possible. Please share examples, if possible.
Hi Scott, my query is Little out of context. I need to create a application user. to integrate Microsoft forms pro with D365. Can you please let me know how to create a application user. There are limited resources about it over net. Your help will be highly appreciated
Hi Scott, Thanks for this video, useful as ever! Do you have any thoughts on using MFA especially on headless apps such as Logic apps and the dynamics 365 connector?
Kevin Robinson You will need to acquire a token and refresh token using MFA and then use the refresh token each time you need to auth - the refresh token can be configured to expire by the tenant MFA settings.
@@ScottDurow Hi Scott thanks for this. I've also been investigating application users which I think must be behind the logic apps connector. It seems to work asking as long as an appropriate security group is used.
Thanks for the tutorial, quick question: is this demonstration done on On-premise CRM or online? Because I don't see in the user form, Application ID filed
Hi Scott, why do we actually need application user in CRM? We are not using this user GUID or any information in the code to connect to CRM. To my understanding we are actually authenticating the application registered in Azure to CRM by passing clientid and secret. Can you please give some information how the application user is being used here.
M. Anand Kumar Hi -if you are impersonating another user then you don’t need an app user - but if you are performing server to server calls without the user context you will need an application user to act as.
I am getting following error on trying to access any entity. StatusCode: 403, ReasonPhrase: 'Forbidden' Anybody else facing this issue? as I already have provided all permissions to the App and user.
Why is the user in ADD needed? Cant you just give the app user in Dynamics and an email that is email@bla.com? Im wondering because if it is an nessesary step and how are they linked? Only buy the test username? Can you do this with not creating the ADD user?
The explanation was pretty amazing but just imagine where we would be without this video. I don't understand why Microsoft does this but it's almost like they are playing a practical joke on us. Here is a bunch of crap documentation and oh did I mention that certain important aspects are really hard to find and you won't get shit done unless you want to spend your entire life reading ms docs and trying to figure out why this shit is so ugly and difficult.
i thought i am the only one with these feelings :)
I'm a consultant and we sell software. Something I always say during sales and trainings: We shouldn't exist. The only reason our software is as popular as it is is because Microsoft's own back end is so unintuitive and complicated.
Thanks for the easy explanation about how to do this Scott. Really appreciate all you do for us in the D365 community.
Thanks so much, this is the best explanation I've found for the necessary steps to set up access to Dynamics 365 via bearer tokens
Yes it is, way better than Micosoft's
Great video. Explained very well. And the most important is the version of ADAL 3.17.3. Many thanks.
At about 4:30 in your video the Application ID URI shows with the domain name preceding a GUID. When I follow the steps in this video the Application ID URI is populated with just a GUID and it is the same as the Application ID. In the CRM UI the Application ID URI is not editable. Wondering if this is an issue.
Its probably pulling from what you have added in the Azure AD app registrations page. Sorry for a year late comment and hoping that this will be helpful to someone. . :)
Thanks very much Scott, It is really very helpful
Excelent sample dear Scott. Thanks a lot!
great example.... is it possible Same thing Using Java-script and HTML.??
Hello, I'm developing an ecommerce website (PHP) for a client who is already using Microsoft Dynamics to manage their own customers. After going through all of the related Dynamics API documentation, I am still left a bit confused - thus, how I found this great video. At 1:11 you state, "this Azure tenant is linked with the same Office 365 tenant that our Dynamics 365 org is in." Does this mean that, in order for my outside server/app to authenticate and make successful GET requests, my customer will need to generate the clientID/secret for me to use, or is this something I can do on my end and supply those things to them? In other words, can I follow the steps in this video on my own (from outside their Dynamics 'environment') and then just supply the credentials that Azure generates for me to my customer, who will then need to add them to their Dynamics setup in order to allow my server to authenticate and make the API requests? Apologies for the extremely long question.
Hello Scott, can we still use pre existing Service Accounts. We already have a few accounts in CRM but there doesn't seem to be a way to associate them with the App from CRM? Anther question would be can we have more than one account associated with an app?
what about Dynamics 365 On Premise....... ???????????
Hi Scott, Do you have any similar code running in php. Because I don't have the PHP library to call CRM token.
Hi,
My API is deployed in app service and I need to implement oauth to access BC. Do I need to follow this way or can I skip the user creation part?and also what should the redirect url I should be given, the azure appservice url?
I am using Automation Anywhere application. There is a rest api option available in the application. Can I use this API method?
Hi Scott, I am using Microsoft.PowerPlatform.Dataverse.Client SDK to interact with Dynamics WebApi from a Function App. I am able to successfully use OrganizationServiceContext to query data using LINQ syntax. However I am not able to use Early Bound Entity Classes to create entities via DataContext & SDK. Is this even possible. Please share examples, if possible.
Hi Scott, my query is Little out of context. I need to create a application user. to integrate Microsoft forms pro with D365. Can you please let me know how to create a application user. There are limited resources about it over net. Your help will be highly appreciated
Hi Scott,
Thanks for this video, useful as ever!
Do you have any thoughts on using MFA especially on headless apps such as Logic apps and the dynamics 365 connector?
Kevin Robinson You will need to acquire a token and refresh token using MFA and then use the refresh token each time you need to auth - the refresh token can be configured to expire by the tenant MFA settings.
@@ScottDurow Hi Scott thanks for this. I've also been investigating application users which I think must be behind the logic apps connector. It seems to work asking as long as an appropriate security group is used.
Thanks for the tutorial, quick question: is this demonstration done on On-premise CRM or online?
Because I don't see in the user form, Application ID filed
Can't we directly create Application User in CRM or it has to be created in Azure AD first?
Sahil Monga Yes you can!
If I don't have the "External" role. What role do you recommend me?
You need to create your own custom role. The "External" role was already setup by him before the video
Is there any special permission needed to be set? Because I don't want to use sysadmin either..I'm beginner with Dynamics, Thanks!
Hi Scott, why do we actually need application user in CRM? We are not using this user GUID or any information in the code to connect to CRM.
To my understanding we are actually authenticating the application registered in Azure to CRM by passing clientid and secret.
Can you please give some information how the application user is being used here.
M. Anand Kumar Hi -if you are impersonating another user then you don’t need an app user - but if you are performing server to server calls without the user context you will need an application user to act as.
I am getting following error on trying to access any entity.
StatusCode: 403, ReasonPhrase: 'Forbidden'
Anybody else facing this issue? as I already have provided all permissions to the App and user.
Can I implement OAuth in Dynamics 365 on-prem IFD?
Good question but really no or rare docs though
Thanks
Why is the user in ADD needed? Cant you just give the app user in Dynamics and an email that is email@bla.com?
Im wondering because if it is an nessesary step and how are they linked? Only buy the test username?
Can you do this with not creating the ADD user?
It is not working
Can you share the code
May be it is not shown here of providing required permissions to CRM after app registration
Why the annoying music???