App Registration authentication lets you create an application user in Power Platform without needing a paid license for a service user. This streamlines the connection between Dotdigital and your Dynamics data.
Before you start
Things you need to know:
Your App Registration and Dynamics instance must be in the same Microsoft tenant.
You need admin access to Microsoft Entra and Power Platform Admin Center.
1. Create the application
Go to Microsoft Entra.
Go to App registrations.
Select New registration.
For Name, enter a name for the application.
This is the name you see referenced in Microsoft Dynamics. For example,Record created by [App Name].For Supported account types, select either Accounts in this organizational directory only (single tenant) or Accounts in any organizational directory (multitenant).
Select Register.
2. Set up permissions
Under Manage, go to API permissions.
Select Add a permission.
Select Dynamics CRM.
In the side panel, under Permissions, select user_impersonation.
Select Add permissions.
Select Grant admin consent for [your tenant name].
Read the confirmation modal and select Yes to confirm.
3. Set up client secret
Go to App registrations > [your application] > Certificates & secrets.
Select the Client secrets tab.
Select New client secret.
In the side panel, enter a description.
Expand the Expires drop-down menu and choose an expiry for your secret.
Select Add.
Copy the Value from the client secret you just created and save it for later reference.
Once you navigate away from this page, the Value is hidden and can't be retrieved.Go to App registrations > [your application] > Overview.
Copy the Application (client) ID and save it for later reference.
Track your expiry date
Make a note of when your secret expires so you can renew it before it stops working.
4. Connect the application to your Dynamics environment
Go to Microsoft Power Platform Admin Center.
Go to Environments and select the Dynamics environment you want to connect to.
Under Access, go to S2S apps and select See all.
Select New app user.
In the side panel for Add an app, select the application you created earlier.
If you can't find the application, make sure it's in the same tenant as your Dynamics environment.For Business unit, enter your Microsoft Dynamics business unit name.
For Security roles, select Email Campaign Connector Service (System Use Only).
Select Save, then read the confirmation modal and select Save again to confirm.
5. Set up security role permissions
You need to manage some security role permissions to make sure the Dynamics connection works correctly.
Learn how in Microsoft Dynamics Security role permissions.
6. Complete the connectivity form
To complete the connection, fill out the Microsoft Dynamics Connectivity Form. If you don't have the form yet, contact our support team to request it.
Fill out the form with your Microsoft Dynamics information.
For Authentication type, select Entra App Registration.
Enter your CRM Web Application URL and CRM Discovery Service URL.
Under Entra App Registration settings, enter the App ID and Client Secret you saved earlier in step 3.
Select Fetch Organisations.
The form connects to your environment and retrieves your CRM organization name and service details.Select SAVE.
Your Microsoft Dynamics environment is now connected to Dotdigital using Entra ID App Registration authentication.