Skip to end of metadata
Go to start of metadata

You are viewing an old version of this page. View the current version.

Compare with Current View Version History

« Previous Version 3 Next »

(You can proceed with the connection if your On-premise installation is internet facing)

  1. Enter the On-premise base URL and click Connect button.

  2. You will be prompted to enter additional information.

    1. Enter the ADFS Server base URL.

    2. Enter the oAuth2 ClientId.

  3. Click Connect button again.

Contact your Dynamics 365 admin for the above details. If an oAuth2 client is not already configured, administrator can follow the instructions below.

(For connection from Connector G-Suite add-on, please contact iEnterprises support to whitelist the Dynamics 365 and ADFS URLs)

Instruction to configure your ADFS for a new OAUTH2 client to use with Connector

To register a new oAuth2 client for automatic sync, run the following from the Administrative PowerShell prompt -

Add-ADFSClient -Name "oAuth2 Client for iSync" -ClientId "some-uid" -RedirectUri "https://isync.ienterprises.com/oauth2client/mscrm.php"

To register a new oAuth2 client for Connector G-Suite add-on, run the following from the Administrative PowerShell prompt -

Add-ADFSClient -Name "oAuth2 Client for Connector" -ClientId "some-uid" -RedirectUri "https://script.google.com/macros/d/17V0Pk2A7VTevuNUbsgXMCnfgYIvN6pblZduRWjLNoNDlw5SzIem3o0Hi/usercallback"

Obtaining refresh tokens from ADFS

Refresh tokens are needed from ADFS to keep the login active. To set them you’d run the following from an Administrative PowerShell prompt -

Set-AdfsRelyingPartyTrust -TargetName "RPT Name" -IssueOAuthRefreshTokensTo AllDevices
Set-AdfsRelyingPartyTrust -TargetName "RPT Name" -TokenLifetime 10
Set-AdfsProperties -SSOLifetime 480

This would issue access tokens with a lifetime of 10 minutes and refresh tokens to all clients with a lifetime of 8 hours.

  • No labels