Set up Microsoft Entra ID for Sandbox Configuration Guide

Description

Let's set up Microsoft Entra ID (Azure Active Directory)

Overview

1. Prerequisites

• Business Central Online
• An Administrator user account associated with the Customers Business Central environment
• Extension version MOB5.47
• Android App 1.9.1.8

2. Creating App Registration

To access Business Central using Microsoft Entra ID (AAD) authentication, you must grant client access to this service.

1. Log into https://portal.azure.com using an administrator user associated with the Customers Business Central environment
2. Navigate to “Microsoft Entra ID” -> “App registrations”:
   
   
   
   
   
3. Select “New registration” and name it Mobile WMS
   
   
   
   

3. Configure Redirect URI

1. Go to Redirect URI
   

2. Select “Public client/native (mobile & desktop)” (Do not select "Web")
   
   Enter this URI: https://businesscentral.dynamics.com/
   
   
   
   Select “Register” 

4. Configuring the Application Registration

1. Navigate to “API permissions”
2. Select “Add a permission”
   
   
   
   
3. Select "Dynamics 365 Business Central"
   
   
   
   
   
4. Select "Delegated permissions"
   
   
   
   
5. Select “user_impersonation” 
   
   
   
   
6. Select "Grant admin consent"
   It might be necessary to grant admin consent for the App registration to work depending the organization settings (requires admin rights).
   
   

6. Gathering Information

This section outlines how to gather the data required for the mobile devices to connect using Microsoft Entra ID.

How to get ID's

1. Navigate to "Microsoft Entra ID"
2. Select "Manage"
3. Select "App registration"
4. Select the new "Mobile WMS" registration
5. Please copy and save the values marked in red
   
   Get Application (client) ID
   
   
   Get the Directory (tenant) ID
   
   
   
6. Insert the values in the Sandbox Configuration Guide
   
   

7. Troubleshooting Login Issues

• I cannot log in from mobile device