...
Dynamics 365 On-premise base URL.
ADFS base URL.
ADFS oAuth2 client id.
1. Instruction to configure your ADFS for a new OAUTH2 client to use with Connector
To register a new oAuth2 client for Connector G-Suite add-on, run the following from the Administrative PowerShell prompt -
...
** Replace “some-uid“ with a client id. Use this client id in connection settings.
Microsoft doc link :
https://docs.microsoft.com/en-us/powershell/module/adfs/add-adfsclient
2. Grant Application permission to ADFS clients
Grant Application permission to ADFS clients with the required scope(s), by running the following from Administrative PowerShell prompt -
| Code Block | ||
|---|---|---|
| ||
Grant-AdfsApplicationPermission -ClientRoleIdentifier "clientid" -ServerRoleIdentifier "Dynamics URL" -ScopeNames openid |
Microsoft doc link :
https://docs.microsoft.com/en-us/powershell/module/adfs/grant-adfsapplicationpermission
3. Obtaining refresh tokens from ADFS
Refresh tokens are needed from ADFS to keep the login active. To set them you’d run the following from an Administrative PowerShell prompt -
...
This would issue access tokens with a lifetime of 10 minutes and refresh tokens to all clients with a lifetime of 14 days.
Microsoft doc link :
https://docs.microsoft.com/en-us/powershell/module/adfs/set-adfsrelyingpartytrust
...