Third parties can access BC via BC Web Services. BC Web Services use OAuth authentication protocol to authenticate third parties to sync data with BC. The steps below are required for configuring OAuth for BC in your environment. 

Register the App 

  • 1.       Login to Azure Portal and then go to Azure Active Directory 
  • 2.       Click on the “App Registrations”
  • 3.       Under the App registration “Click” on “ New Registration” 

  • 4.       Provide  the name to the App as “Gorilla Expense Dynamics 365 BC OAuth”
  • 5.       Select the radio button “Accounts in this organizational directory only (Single Tenant)”
  • 6.       Then click on “Register” button and the App will be created in sometime.

  • 7.       App is created successful. 

 

 

Configure Authentication

  • 1.        Now click on the “Authentication”  and then click on “Add a platform” then select “Web”

  • 2.       After Click on “Web” configure the “Redirect URIs” as  https://businesscentral.dynamics.com and select the  check boxed for “Access tokens” and “ID tokens”

 

 

 

 

Configure API Permission 

  • 1.       Click on the “Add Permission” then select “Dynamic 365 Business Central” tile

  • 2.       You can see “Delegate permissions” tile and under that you need to select the “user_impresonation” and “Finacials.ReadWrite.All” permissions and then click “Add Permissions”

 

 

  • 3.       You need to also configure “Application permissions” where you can need to select “app_access”, “API.ReadWrite.All” and “Automation.ReadWrite.All” permissions then click “Add Permissions”

 

  • 4.       And then app need to “Grant Admin Consent for your company”

 

  • 5.       On successful “Grant admin Concent” the screen will look like below.

Copy the Client Id , Tenant ID

 You have to copy Client Id  & Tenant ID from the App “Overview” as shown in the screen below

 

 

Create and Copy Client Secret

1. Click on the “Certificate & secrets” option and then “New client secret” 

2. The screen will prompt for description for client secret and expiry  time. The maximum expiry time allowed is 24 months. We recommend selecting “24 Months” and then click “Add” 

3. It is important to copy the secret “Value” as soon as you create the “Client Secret” because it will not allow to recopy once you go away of this screen. 

 

NOTE: Finally, Please share the “Client Id” , “Tenant ID” and “Client Secret” is need by Gorilla Expense Team

 

 

Configuration in Business Central

 

1) Login to the Business Central, search for “Azure Active Directory Applications”, click on New.

 

 

 

2) Copy Client Id from the App “Overview” and paste it in the Client ID field. Under User Group section provide the full access (D365 Full Access) - please refer to the sample screenshot below.

 

 

3) Now, click on Grant Consent and select the Microsoft login account and click on Accept button – please refer to the sample screenshots below.

 

 

 

Graphical user interface, text Description automatically generated

 

Graphical user interface, text, application Description automatically generated