How to Create a Web API Integration for Dataverse Using Azure Portal

 This guide walks you through creating a secure Web API integration between Microsoft Dataverse (used by Dynamics 365) and an external system using Azure Active Directory (Azure AD) authentication.

✅ Prerequisites

  • Admin access to the Azure Portal

  • Admin access to the Power Platform admin center

  • Admin or System Customizer access to the target Dynamics 365 environment

  • A licensed Dataverse environment (e.g., Dynamics 365 Sales)

🧩 Step 1: Register an App in Azure AD

  1. Go to Azure Portal

  2. Navigate to Azure Active Directory > App registrations

  3. Click New registration

  4. Fill in the form:

    • Name: e.g., DataverseIntegrationApp

    • Supported account types: Select Accounts in this organizational directory only

    • Redirect URI: Leave blank (or add later if needed)

  5. Click Register

📌 After registration, note down:

  • Application (client) ID

  • Directory (tenant) ID

🔐 Step 2: Generate a Client Secret

  1. In the same app, go to Certificates & secrets

  2. Under Client secrets, click New client secret

  3. Set a description and expiration

  4. Click Add

  5. Copy the secret value immediately – you won’t be able to view it again later

🔗 Step 3: Assign API Permissions

  1. Go to API permissions > Add a permission

  2. Choose Dynamics CRM

  3. Select:

    • Application permissions (for server-to-server integration)

  4. Check user_impersonation

  5. Click Add permissions

  6. Click Grant admin consent for your organization (must be done by an Azure AD admin)

🧑‍💻 Step 4: Create an Application User in Dataverse

  1. Go to Power Platform Admin Center

  2. Select Environments > open your target environment

  3. Click Settings on the top menu

  4. Under Users + permissions, select Application users

  5. Click + New app user

  6. In the pane:

    • Click Add an app, select your Azure-registered app (from Step 1), then click Add

  7. Click Next and assign appropriate security roles (e.g., System Customizer or a custom role with needed permissions)

  8. Click Create

✅ This application user now represents your Azure AD app within the specific Dynamics 365 environment.

🌐 Step 5: Get Your Dataverse Web API URL

  1. In Dynamics, click the gear icon → Advanced Settings

  2. In the classic settings page, go to Customizations > Developer Resources

  3. Find and copy the Service Root URL, e.g.:

    https://<yourorg>.api.crm.dynamics.com/api/data/v9.2/

🔑 Share These Details With Your Integration Partner

To enable the integration (e.g., with Contraqer or another vendor), provide the following:

ItemSource
Tenant IDAzure AD > App Registration
Client IDAzure AD > App Registration
Client SecretAzure AD > Certificates & Secrets
API URLD365 > Developer Resources

🎯 You're Ready!

The Azure app is now authorized to access your Dataverse environment securely via Web API. You can use this setup for custom apps, vendor integrations, or backend services interacting with D365 data.

Let me know if you want this exported to PDF or used in an internal documentation portal!

at

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)