Microsoft Dynamics CRM connection guide for Jitterbit App Builder
Overview
This guide describes the system requirements and instructions for connecting App Builder to Microsoft Dynamics CRM.
System requirements
Active account
- Microsoft Dynamics CRM
Client web browser
-
Chrome: 84+
-
Firefox: 73+
-
Safari: 13.0.1+
-
Edge: 84+
Connection instructions
Prerequisites
Before you setup a connection from App Builder to the Microsoft Dynamics CRM, you should perform the following steps:
-
Verify you have an active Dynamics CRM account
-
Verify you can log into an active Azure account with permission to configure connections
Register an app in Microsoft Azure
The method used to authenticate from App Builder to Dynamics CRM is OAuth 2.0. We will configure the OAuth flow using Microsoft Azure.
-
Navigate to the Microsoft Entra ID admin center portal
-
Under Manage, select App registrations > New registration
-
Provide a Name. For example: App Builder Dynamics CRM
-
Select who can use the application
-
Click Register
When the registration is complete, the Azure portal will display the app registration on the Overview screen. Note the value in Application (client) ID as the OAuthClientID and the Directory (tenant) ID as the AzureTenantID.
Add a redirect URI
The redirect URL represents the location where Microsoft will redirect the user's client and pass
the security tokens after authentication.
-
Navigate to the registered app in Microsoft Entra ID
-
Click Add a Redirect URI to enter the value. For example:
http://localhost/auth-response
Add a client secret
Client secrets are also referred to as an application password. The registered app in Microsoft Azure requires a client secret record to be created for each App Builder environment the connection is being used in. If your App Builder configuration has a development, QA, and Production environment you will need 3 corresponding client secret records.
Client secrets have an associated Expires date, and the maximum length they can be set for is for 2 years.
Generating a client secret record provides you with a client secret Value and Secret ID. The Value is encoded and only available to copy and use once (otherwise a new token would need to be generated to capture a new Value).
-
Navigate to the registered app in Microsoft Entra ID
-
Under Manage, select Certificates & secrets
-
Click New client secret
-
Provide a Description. For example: App Builder Production
-
Select an Expires value. For example: 730 days (24 months)
-
Click Add
-
Note the Value as it will become encoded. You will need it as the OAuthClientSecret
Assign API permissions
The registered app in Microsoft Azure needs permissions assigned to Dynamics CRM. This should be configured based on how you want to integrate it with App Builder.
-
Navigate to the registered app in Microsoft Entra ID
-
Under Manage, select API permissions
-
Click Add a permission
-
Click Dynamics ERP
-
If you plan for your application to connect without a user context, select Application Permissions (OAuthGrantType=Client). Otherwise, use Delegated Permissions (OAuthGrantType=Code)
-
Click Add a permission and define permissions per your business requirements
For more detail, see Quickstart: Register an application with the Microsoft identity platform
Link the registered app to dynamics CRM
For this configuration step, you should have the Application (client) ID value for the app registered above copied somewhere handy for usage, like your clipboard.
-
Navigate to Dynamics CRM
-
Create an Application User
-
Enter the Client ID value from the registered app. This is the Application (client) ID value in Microsoft Azure.
-
Assign the new user a role
Adding a server
-
Navigate to the App Builder IDE
-
From the Connect menu, click the Data Servers button
-
Click the + Server button on the Data Servers panel. This will bring up the Server page. Provide the following information:
-
Server Name: An identifiable and unique server name. For example: Dynamics CRM
-
Type: Select Dynamics CRM from the dropdown menu
-
Url: Enter the Url for accessing Dynamics CRM, must start with http:// or https://
-
-
Click the Save button
-
Click the Advanced Settings button.
-
Provide the following information and corresponding values in the Advanced field, separating each value with a semi colon:
-
AzureTenant – Tenant Id value for Azure service
-
InitiateOAuth – property to initiate the process to obtain/refresh the OAuth access token on connection. For example: GETANDREFRESH
-
OAuthClientID – Id value assigned when app is registered with OAuth server
-
OAuthClientSecret – value assigned when app is registered with OAuth server
-
OAuthGrantType – grant type for the OAuth flow. For example: CLIENT
-
OAuthSettingsLocation – location of settings file where OAuth values will be saved. For example: C:\inetpub\wwwroot\App Builder\App_Data\CData\DynamicsCRM;
-
Advanced Settings Example:
AzureTenant=<TenantID>;
InitiateOAuth=GETANDREFRESH;
OAuthClientId=<ClientID>;
OAuthClientSecret=<ClientSecret>;
OAuthGrantType=CLIENT;
OAuthSettingsLocation=C:\inetpub\wwwroot\App Builder\App_Data\CData\DynamicsCRM;