{"id":7553,"date":"2023-12-18T00:30:25","date_gmt":"2023-12-18T00:30:25","guid":{"rendered":"https:\/\/pariswells.com\/blog\/?p=7553"},"modified":"2023-12-18T00:30:46","modified_gmt":"2023-12-18T00:30:46","slug":"dynamics-smtp-app-registration-azure-ad","status":"publish","type":"post","link":"https:\/\/pariswells.com\/blog\/research\/dynamics-smtp-app-registration-azure-ad","title":{"rendered":"Dynamics SMTP App Registration Azure AD"},"content":{"rendered":"\n<h2 class=\"wp-block-heading\" id=\"register-the-app\">Register the app<\/h2>\n\n\n\n<ol class=\"wp-block-list\">\n<li>First, you&#8217;ll need to have an administrator who can log into the&nbsp;<a href=\"https:\/\/portal.azure.com\/\">Azure Portal<\/a>.<\/li>\n\n\n\n<li>In the search box, type&nbsp;<em>App Registration<\/em>&nbsp;and select that option:<img loading=\"lazy\" decoding=\"async\" src=\"https:\/\/learn.microsoft.com\/en-us\/dynamics-gp\/whats-new\/media\/image47.png\" alt=\"Search for App Registration in Azure portal\" width=\"677\" height=\"282\"><\/li>\n\n\n\n<li>Click on&nbsp;<strong>New Registration<\/strong>&nbsp;as shown in the below screenshot:<img loading=\"lazy\" decoding=\"async\" src=\"https:\/\/learn.microsoft.com\/en-us\/dynamics-gp\/whats-new\/media\/image49.png\" alt=\"App registration form in Azure portal\" width=\"673\" height=\"276\"><\/li>\n\n\n\n<li>You will then choose settings for your new application.<ol><li>Enter a display name for the application (e.g. GPMFAApp)<\/li><li>For&nbsp;<strong>Supported account types<\/strong>&nbsp;prior to the Fall 2023 (18.6) release, you were limited to the second option (<strong>Account in any organizational directory (Any Microsoft Entra ID account \u2013 Multitenant)<\/strong>). If you are on 18.6 or later, you can also use the (<strong>Account in this organizational directory only (%domain% only &#8211; Single tenant)<\/strong>) option. Choosing the wrong option can lead to an Unknown Error when using MFA in Dynamics GP.<\/li><\/ol><img loading=\"lazy\" decoding=\"async\" src=\"https:\/\/learn.microsoft.com\/en-us\/dynamics-gp\/whats-new\/media\/image51.png\" alt=\"Account types in wizard for registering an app\" width=\"437\" height=\"320\"><\/li>\n\n\n\n<li>Click on Register button.<\/li>\n\n\n\n<li>Click on API Permission on the left side panel as shown in the screenshot.<img loading=\"lazy\" decoding=\"async\" src=\"https:\/\/learn.microsoft.com\/en-us\/dynamics-gp\/whats-new\/media\/image53.png\" alt=\"API Permission menu item highlighted\" width=\"484\" height=\"218\"><\/li>\n\n\n\n<li>Click on Add permission button.<img loading=\"lazy\" decoding=\"async\" src=\"https:\/\/learn.microsoft.com\/en-us\/dynamics-gp\/whats-new\/media\/image55.png\" alt=\"Add permission button highlighted\" width=\"557\" height=\"250\"><\/li>\n\n\n\n<li>Microsoft Graph \u2013 By default, Microsoft Graph application will have read permission for the user profile. To allow a Graph application to send an email, we need to add some specific permissions.<img loading=\"lazy\" decoding=\"async\" src=\"https:\/\/learn.microsoft.com\/en-us\/dynamics-gp\/whats-new\/media\/image57.png\" alt=\"Graph selected\" width=\"481\" height=\"237\"><\/li>\n\n\n\n<li>Click on &#8220;Delegated permissions&#8221;.<\/li>\n\n\n\n<li>Search for &#8220;Mail.Send&#8221; in the Select permission search box.<\/li>\n\n\n\n<li>Mark the &#8220;Mail.Send&#8221; and &#8220;Mail.Send.Shared&#8221; checkboxes and click on Add permissions.<img loading=\"lazy\" decoding=\"async\" src=\"https:\/\/learn.microsoft.com\/en-us\/dynamics-gp\/whats-new\/media\/image94.png\" alt=\"Permissions for request API\" width=\"557\" height=\"566\"><\/li>\n\n\n\n<li>Mail.Send and Mail.Send.Shared permissions will be added under Microsoft Graph.<img loading=\"lazy\" decoding=\"async\" src=\"https:\/\/learn.microsoft.com\/en-us\/dynamics-gp\/whats-new\/media\/image93.png\" alt=\"Configured permissions\" width=\"403\" height=\"196\"><\/li>\n\n\n\n<li>Click on &#8220;Authentication&#8221; on the left panel under Manage option.<img loading=\"lazy\" decoding=\"async\" src=\"https:\/\/learn.microsoft.com\/en-us\/dynamics-gp\/whats-new\/media\/image63.png\" alt=\"Authentication menu item highlighted\" width=\"403\" height=\"252\"><\/li>\n\n\n\n<li>Click on Add Platform.<img loading=\"lazy\" decoding=\"async\" src=\"https:\/\/learn.microsoft.com\/en-us\/dynamics-gp\/whats-new\/media\/image65.png\" alt=\"highlighted tile\" width=\"255\" height=\"275\"><\/li>\n\n\n\n<li>Enter the value &#8220;urn:ietf:wg:oauth:2.0:oob&#8221; in the Custom Redirect URIs text box as shown in the screen shot. This uri will redirect to the original application.<img loading=\"lazy\" decoding=\"async\" src=\"https:\/\/learn.microsoft.com\/en-us\/dynamics-gp\/whats-new\/media\/image67.png\" alt=\"Custom redirect URI specified\" width=\"343\" height=\"342\"><\/li>\n\n\n\n<li>Click on Configure button<\/li>\n\n\n\n<li>Save the changes for the application.&nbsp;NoteMulti-Factor (Modern Auth) Authentication is supported in Web Client with 18.5 release or later.&nbsp;<a href=\"https:\/\/community.dynamics.com\/gp\/b\/dynamicsgp\/posts\/modern-authentication-in-web-client\">Refer to Web Client setup with Modern Auth<\/a><img loading=\"lazy\" decoding=\"async\" src=\"https:\/\/learn.microsoft.com\/en-us\/dynamics-gp\/whats-new\/media\/image69.png\" alt=\"Default Client Type\" width=\"599\" height=\"362\"><\/li>\n\n\n\n<li>Click on Overview on the left side pane. The Application (client) ID will be used in the Microsoft Dynamics GP client.<img loading=\"lazy\" decoding=\"async\" src=\"https:\/\/learn.microsoft.com\/en-us\/dynamics-gp\/whats-new\/media\/image71.png\" alt=\"Highlighted application client ID\" width=\"603\" height=\"279\"><\/li>\n<\/ol>\n\n\n\n<p>From the setup that was done in Azure, now launch Microsoft Dynamics GP 18.3 or later and go to Tools, Select Setup, choose Company and click Company E-mail Setup. Enter the Application (Client) ID into this Desktop Properties section of this window.<\/p>\n\n\n\n<figure class=\"wp-block-image\"><img decoding=\"async\" src=\"https:\/\/learn.microsoft.com\/en-us\/dynamics-gp\/whats-new\/media\/image95.png\" alt=\"Company E-mail Setup in GP\"\/><\/figure>\n\n\n\n<p>If you&#8217;re using a Single tenant app registration you will also need to pull the Directory (Tenant) ID from the aboeve Overview window and enter that into the Tenant ID field.<\/p>\n\n\n\n<p>[11:21 AM] Steve Rodionoff<\/p>\n\n\n\n<p>To enable Modern authentication, you must perform an App registration in Azure Active Directory. And then configure GP to use this application (client) ID.<\/p>\n\n\n\n<p>Setting up App registration in Azure for GP Emailing:<br><a href=\"https:\/\/learn.microsoft.com\/en-us\/dynamics-gp\/whats-new\/multi-factor-authentication\" target=\"_blank\" rel=\"noreferrer noopener\">Multi-Factor Authentication &#8211; Dynamics GP | Microsoft Docs<\/a><\/p>\n\n\n\n<p>The GP configuration side of the setup can be found here:<br><a href=\"https:\/\/community.dynamics.com\/blogs\/post\/?postid=bce65f37-eb08-4531-b62b-32a8af728f58\" target=\"_blank\" rel=\"noreferrer noopener\">Microsoft Dynamics GP Fall 2020 &#8211; Modern Authentication<\/a><\/p>\n\n\n\n<p>If using Web client, there is an additional option to enable email support from the web client interface.<\/p>\n\n\n\n<p><a href=\"https:\/\/community.dynamics.com\/blogs\/post\/?postid=7a9575dc-6d56-4f3e-86a9-9fd4e23cbfd9\" target=\"_blank\" rel=\"noreferrer noopener\">Microsoft Dynamics GP October 2022 &#8211; Modern Authentication in Web Client &#8211; Microsoft Dynamics GP Community<\/a><\/p>\n\n\n\n<p>Troubleshooting<\/p>\n\n\n\n<p><a href=\"https:\/\/learn.microsoft.com\/en-us\/dynamics-gp\/installation\/email-troubleshooting-guide\" target=\"_blank\" rel=\"noreferrer noopener\">Dynamics GP Email Troubleshooting Guide &#8211; Dynamics GP | Microsoft Learn<\/a><\/p>\n\n\n\n<p>Additional information for GP 18.5 and above<\/p>\n\n\n\n<figure class=\"wp-block-embed\"><div class=\"wp-block-embed__wrapper\">\nhttps:\/\/community.dynamics.com\/blogs\/post\/?postid=b571b4d4-1d58-41f4-b4a3-3c8ee1c4602c\n<\/div><\/figure>\n\n\n\n<p>Multi-Factor Authentication &#8211; Dynamics GP<\/p>\n\n\n\n<p>New in October 2020 &#8211; Multi-Factor Authentication<\/p>\n","protected":false},"excerpt":{"rendered":"<p>Register the app From the setup that was done in Azure, now launch Microsoft Dynamics GP 18.3 or later and go to Tools, Select Setup, choose Company [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[1],"tags":[],"class_list":["post-7553","post","type-post","status-publish","format-standard","hentry","category-research"],"aioseo_notices":[],"_links":{"self":[{"href":"https:\/\/pariswells.com\/blog\/wp-json\/wp\/v2\/posts\/7553","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/pariswells.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/pariswells.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/pariswells.com\/blog\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/pariswells.com\/blog\/wp-json\/wp\/v2\/comments?post=7553"}],"version-history":[{"count":2,"href":"https:\/\/pariswells.com\/blog\/wp-json\/wp\/v2\/posts\/7553\/revisions"}],"predecessor-version":[{"id":7555,"href":"https:\/\/pariswells.com\/blog\/wp-json\/wp\/v2\/posts\/7553\/revisions\/7555"}],"wp:attachment":[{"href":"https:\/\/pariswells.com\/blog\/wp-json\/wp\/v2\/media?parent=7553"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/pariswells.com\/blog\/wp-json\/wp\/v2\/categories?post=7553"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/pariswells.com\/blog\/wp-json\/wp\/v2\/tags?post=7553"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}