Skip to end of metadata
Go to start of metadata

You are viewing an old version of this page. View the current version.

Compare with Current View Version History

« Previous Version 12 Next »

(Only for internet facing installation)

To connect to Dynamics 365 On-premise installation, user(s) need to provide -

  1. Dynamics 365 On-premise base URL.

  2. ADFS base URL.

  3. ADFS oAuth2 client id.

Instruction to configure your ADFS for a new OAUTH2 client to use with Connector

To register a new oAuth2 client for Connector G-Suite add-on, run the following from the Administrative PowerShell prompt -

Add-ADFSClient -Name "oAuth2 Client for Connector" -ClientId "some-uid" -RedirectUri "https://script.google.com/macros/d/17V0Pk2A7VTevuNUbsgXMCnfgYIvN6pblZduRWjLNoNDlw5SzIem3o0Hi/usercallback"

To register a new oAuth2 client for Automatic Sync, run the following from the Administrative PowerShell prompt -

Add-ADFSClient -Name "oAuth2 Client for iSync" -ClientId "some-uid" -RedirectUri "https://isync.ienterprises.com/oauth2client/mscrm.php"

** Replace “some-uid“ with a client id. Use this client id in connection settings.

Microsoft doc link :

https://docs.microsoft.com/en-us/powershell/module/adfs/add-adfsclient?view=win10-ps

Obtaining refresh tokens from ADFS

Refresh tokens are needed from ADFS to keep the login active. To set them you’d run the following from an Administrative PowerShell prompt -

Set-AdfsRelyingPartyTrust -TargetName "RPT Name" -IssueOAuthRefreshTokensTo AllDevices
Set-AdfsRelyingPartyTrust -TargetName "RPT Name" -TokenLifetime 10
Set-AdfsProperties -SSOLifetime 20160

This would issue access tokens with a lifetime of 10 minutes and refresh tokens to all clients with a lifetime of 14 days.

Microsoft doc link :

https://docs.microsoft.com/en-us/powershell/module/adfs/set-adfsrelyingpartytrust?view=win10-ps

https://docs.microsoft.com/en-us/powershell/module/adfs/set-adfsproperties?view=win10-ps

  • No labels