Skip to Content

Microsoft Dynamics 365 Connection Details

Introduction

Connector Version

This documentation is based on version 24.0.9273 of the connector.

Get Started

Microsoft Dynamics 365 Version Support

The connector supports read/write access to Microsoft Dynamics 365 through OData Web services.

Establish a Connection

Connect to Microsoft Dynamics 365

The Microsoft Dynamics 365 driver supports connecting to the following Microsoft Dynamics 365 editions:

  • CustomerService
  • FieldService
  • FinOpsOnline (Default)
  • FinOpsOnPremise
  • HumanResources
  • Marketing
  • ProjectOperations
  • Sales

Note that "Supply Chain Management" is the same as "Finance and Operations." You can connect to it by setting the Edition to either FinOpsOnline or FinOpsOnPremise.

To connect, set these parameters:

  • OrganizationURL: The URL to your Microsoft Dynamics 365 organization; for example, https://orgcb42e1d0.crm.dynamics.com.
  • Edition: As shown in the list of editions above.

Authenticate to Microsoft Dynamics 365

Microsoft Dynamics 365 supports authentication via Microsoft Entra ID, Microsoft Entra service principal, or Azure Managed Service Identity (MSI). All of these are based on the OAuth standard.

Microsoft Entra ID

Authenticating via Microsoft Entra ID requires you to create a custom app registration, as described in Creating a Microsoft Entra ID Application. You can authenticate with either a client secret or a JWT certificate.

To connect, set these properties:

Admin consent refers to permissions granted by a Microsoft Entra ID Tenant's admin to a custom application, as required for the use case.

(Since the embedded application within the Microsoft Dynamics 365 connector contains no permissions that require Admin consent, admin consent only applies to custom applications.)

If your organization requires admin consent for authorizing any new OAuth application for your Azure Tenant, it means that the first time someone in your organization installs and uses an OAuth application, an administrator for the organization must explicitly grant that application access.

(Your organization can choose to disable this requirement.)

Granting Admin Consent

When creating a new OAuth application in the Azure Portal (see Creating a Microsoft Entra ID Application), you must specify which permissions the application requires. If you know that your organization requires admin consent for new custom applications, you can start by specifying permissions that are already labeled Admin Consent Required. (For example, all Groups permissions require admin consent.)

There are two ways to grant admin consent:

  • The easiest way to grant admin consent is to just have an admin log into portal.azure.com and navigate to the application you have created in App Registrations.

    Under API Permissions, click Grant Consent. This grants your application the necessary permissions on the tenant on which it was created.

  • If your organization has multiple tenants or the application needs to be granted permissions for other tenants outside your organization, you can use the GetAdminConsentURL to generate the Admin Authorization URL. Unlike the GetOAuthAuthorizationUrl, there is no important information returned from this endpoint. If the tenant grants access, it returns a Boolean confirming that permissions were granted.

After an admin grants consent, authentication is performed as usual.

Client Credentials Auth Flow

Client credentials refers to a flow in OAuth where there is no direct user authentication taking place. Instead, credentials are created for just the application itself. All tasks taken by the application are done without a default user context. This makes the authentication flow a bit different from standard.

All permissions related to the client OAuth flow require admin consent.

This means the application embedded with the Microsoft Dynamics 365 connector cannot be used in the client OAuth flow. You must create your own OAuth application to use client credentials, as described in Creating a Microsoft Entra ID Application.

To do this:

  1. Login to portal.azure.com.

  2. Navigate to App Registration > API Permissions.

  3. Select the Microsoft Graph permissions. There are two distinct sets of permissions: Delegated Permissions and Application permissions.

    The permissions used during client credential authentication are under Application Permissions. Select the applicable permissions you require for your integration.

To connect, set these properties:

Microsoft Entra service principal

Actions in Microsoft Entra ID can be run by either user accounts or service principals. A service principal is a non-interactive account with elevated permissions, that performs tasks based on the roles and permissions assigned. Authentication as a Microsoft Entra service principal is handled via the OAuth Client Credentials flow, without user involvementy Authentication as a Microsoft Entra service principal requires you to create a custom Microsoft Entra ID Service Principal application, as described in Creating a Custom Microsoft Entra ID Service Principal App.

When you are ready to connect, set these properties:

Managed Service Identity (MSI)

If you are running Microsoft Dynamics 365 on an Azure VM and want to automatically obtain Managed Service Identity (MSI) credentials to connect, set AuthScheme to AzureMSI.

User-Managed Identities

To obtain a token for a managed identity, use the OAuthClientId property to specify the managed identity's client_id.

If your VM has multiple user-assigned managed identities, you must also specify OAuthClientId.

Create a Custom OAuth Application

Create a Microsoft Entra ID Application

Microsoft Dynamics 365 supports user-based authentication using Microsoft Entra ID. This authentication is OAuth-based.

embeds OAuth Application Credentials with branding that can be used when connecting to Microsoft Dynamics 365 via a desktop application or a headless machine. To connect to Microsoft Dynamics 365 via the Web, you must always create a custom application, as described here.

However, since custom Microsoft Entra ID applications seamlessly support all three commonly-used authentication flows, you might want to create a custom application (use your own Microsoft Entra ID Applications Credentials) for those other authentication flows. Custom OAuth applications are useful if you want to:

  • Control branding of the authentication dialog.
  • Control the redirect URI that the application redirects the user to after the user authenticates.
  • Customize the permissions that you are requesting from the user.

Note

Microsoft has rebranded Microsoft Entra ID as Entra ID. In topics that require the user to interact with the Entra ID Admin site, we use the same names Microsoft does. However, there are still connection properties whose names or values reference Microsoft Entra ID.

Authenticate With Microsoft Entra ID

In <https://portal.azure.com>:

  1. In the left-hand navigation pane, select Microsoft Entra ID > App registrations.

  2. Click New registration.

  3. Enter a name for the application.

  4. Specify the types of accounts this application should support:

    • For private use applications, select Accounts in this organization directory only.
    • For distributed applications, select one of the multi-tenant options.

Note

If you select Accounts in this organizational directory only (default), when you establish a connection with Microsoft Dynamics 365 connector you must set AzureTenant to the ID of the Microsoft Entra ID Tenant. Otherwise, the authentication attempt fails.

  1. Set the redirect URI to http://localhost:33333 (default) OR, if you want to

    specify a different port, specify the desired port and set CallbackURL to the exact reply URL you just defined.

  2. To register the new application, click Register. An application management screen displays. Record these values for later use. (You will use the Application (client) ID value to set the OAuthClientId parameter, and the Directory (tenant) ID value to set the AzureTenant parameter.)

  3. Navigate to Certificates & Secrets. Select New Client Secret for this application and specify the desired duration. After the client secret is saved, the Azure App Registration displays the key value. This value is displayed only once, so record it for future use. (You will use it to set the OAuthClientSecret.)

  4. Select Required Permissions > Add. Under Select an API, select Dynamics ERP > Delegated Permissions for [OAuthGrantType](#RSBDynamics365_p_OAuthGrantType) = CODE (default).

  5. If you have specified the use of permissions that require admin consent (such as the Application Permissions), you can grant them from the current tenant on the API Permissions page.

Some custom applications require administrative permissions to operate within a Microsoft Entra ID tenant. Admin consent can be granted when creating a new custom Microsoft Entra ID application, by adding relevant permissions that are already marked with "Admin Consent Required". Admin consent is also required to use Client Credentials in the authentication flow.

To grant admin consent:

  1. Have an admin log in to https://portal.azure.com.
  2. Navigate to App Registrations and find the custom Microsoft Entra ID application you created.
  3. Under API Permissions, click Grant Consent and follow the wizard.

This gives your application permissions on the tenant under which it was created.

Create a Custom Microsoft Entra ID Service Principal App

Create a Custom Microsoft Entra ID Service Principal App

When authenticating using a Microsoft Entra service principal, you must create a custom app registration and a service principal that can access the necessary resources.

Procedure

The following steps create a custom Microsoft Entra ID Service Principal application for most supported editions and and obtain the connection properties for the Microsoft Entra service principal authentication, then sets up an application user for your Power Platform (Microsoft Entra service principal) environment.

For information on how to create a custom Microsoft Entra ID Service Principal app for FinOps Online, see FinOps Online, below.

Create the Custom Microsoft Entra ID Service Principal Application
  1. Log in to https://portal.azure.com.
  2. In the left-hand navigation pane, select Microsoft Entra ID > Manage > App Registrations and click New registration. The portal displays the Register an application page.
  3. Enter an application name.
  4. Specify that the new application can be used by Accounts in this organizational directory only.
  5. Click Register. The Portal displays the overview page for your new application.
  6. Navigate to Manage > App Registrations.
  7. In the API Permissions dialog, choose Dynamics CRM permissions. The Portal displays the Dynamics CRM menu.
  8. Choose Delegated permissions type, select User_impersonation, then click Add Permissions.
  9. Click yes.
  10. Still in the Portal's Power Platform Service Principal section, click Certificates & secrets > + New Client Secret. The Portal displays the Add a client secret form.
  11. Provide a description of the client secret (usually this is the same as the name you gave to your custom application) and choose an Expires date for the secret.
  12. Click Add.
  13. The Portal generates a Secret ID (a unique identifier) and a Value (the password) for the secret. These display only once, so record them for future use. (If you lose the key you will need to delete the secret and create a new one.)
Create the Application User
  1. Login in to https://admin.powerplatform.microsoft.com/home.
  2. In the navigation panel at left, click the Environments tab.
  3. Select the D365 environment.
  4. Navigate to Settings > Users + permissions.
  5. Select Application users.
  6. Click New app user > Add an app.
  7. Select the custom Service Principal application that you just created.
  8. Add the System administrator security role.
  9. Click Create.
  10. Assign a business unit.
  11. Click Create.
Procedure for FinOps Online

To create a custom Microsoft Entra ID Service Principal application for use with Microsoft Dynamics 365 FinOps Online, you register the application with Microsoft Dynamics 365, generate a client secret for the custom application, configure the required permissions to use the application, and then register the application for Finance and Operations.

Note

During registration in Microsoft Dynamics 365 for Finance and Operations, we recommend you supply a dedicated service account that has all the required permissions that must be performed.

If no such account currently exists, create one before you begin the procedures below.

Register the application in the Microsoft Entra ID portal

  1. Log in to https://portal.azure.com.
  2. Switch to the tenant where you want to register the application.
  3. In the left-hand navigation pane, select Microsoft Entra ID > App Registrations and click New registration. The portal displays the Register an application page.
  4. Enter an application name.
  5. For the account type, specify the Accounts in any organizational directory (Any Microsoft Entra ID directory - Multitenant).
  6. Accept the default values for the remaining fields.
  7. Click Register. The Portal displays the overview page for your new application, which displays certain "essentials".
  8. Record the value for Application (client) ID for future use.

Generate the Client Secret

  1. Next to Client credentials, click Add a certificate or secret. The portal displays the Certificates and Secrete page.
  2. Click New client secret. The portal displays the Add a client secret panel.
  3. Specify a description for the secret (for example, "App Connect secret"), then select an expiry period.
  4. Click Add.
  5. The portal generates the client secret and displays it on the Certificates & secrets page.
  6. The secret is shown in full only this one time, so record the secret value now, for future use.

Configure required permissions

  1. In the left navigation panel, click API permissions.

  2. Navigate to Add a permission > Dynamics ERP > Application permissions.

  3. Select Connector.FullAccess permission, then click Add permissions add it.

  4. Navigate to Add a permission > Dynamics ERP > Delegated permissions.

  5. Select AX.FullAccess, CustomService.FullAccess, and OData.FullAccess, then click Add permissions add them.

  6. If any of the permissions you just added is Not granted for your domain, click Grand admin consent for yourdomain.

    Click Yes to confirm. The status of all permissions is updated to Granted.

Register the application with Microsoft Dynamics 365 Finance and Operations

  1. Open your Microsoft Dynamics 365 Finance and Operations account.

  2. Navigate to Modules > System administration > Setup > Microsoft Entra ID applications.

    The portal displays the Microsoft Entra ID applications page.

  3. Click New.

  4. At the Client Id field, enter the application (client) ID you reigistered in Microsoft Entra ID.

  5. At the Name field, enter a name for the custom application.

  6. At the User ID field, select an appropriate service account user ID as described at the beginning of this section.

  7. Click Save.

Important Notes

Configuration Files and Their Paths

  • All references to adding configuration files and their paths refer to files and locations on the Jitterbit agent where the connector is installed. These paths are to be adjusted as appropriate depending on the agent and the operating system. If multiple agents are used in an agent group, identical files will be required on each agent.

Advanced Features

This section details a selection of advanced features of the Microsoft Dynamics 365 connector.

User Defined Views

The connector supports the use of user defined views, virtual tables whose contents are decided by a pre-configured user defined query. These views are useful when you cannot directly control queries being issued to the drivers. For an overview of creating and configuring custom views, see User Defined Views .

SSL Configuration

Use SSL Configuration to adjust how connector handles TLS/SSL certificate negotiations. You can choose from various certificate formats;. For further information, see the SSLServerCert property under "Connection String Options" .

Proxy

To configure the connector using private agent proxy settings, select the Use Proxy Settings checkbox on the connection configuration screen.

Query Processing

The connector offloads as much of the SELECT statement processing as possible to Microsoft Dynamics 365 and then processes the rest of the query in memory (client-side).

For further information, see Query Processing.

Log

For an overview of configuration settings that can be used to refine logging, see Logging. Only two connection properties are required for basic logging, but there are numerous features that support more refined logging, which enables you to use the LogModules connection property to specify subsets of information to be logged.

User Defined Views

The Microsoft Dynamics 365 connector supports the use of user defined views: user-defined virtual tables whose contents are decided by a preconfigured query. User defined views are useful in situations where you cannot directly control the query being issued to the driver; for example, when using the driver from Jitterbit.

Use a user defined view to define predicates that are always applied. If you specify additional predicates in the query to the view, they are combined with the query already defined as part of the view.

There are two ways to create user defined views:

  • Create a JSON-formatted configuration file defining the views you want.
  • DDL statements.

Define Views Using a Configuration File

User defined views are defined in a JSON-formatted configuration file called UserDefinedViews.json. The connector automatically detects the views specified in this file.

You can also have multiple view definitions and control them using the UserDefinedViews connection property. When you use this property, only the specified views are seen by the connector.

This user defined view configuration file is formatted so that each root element defines the name of a view, and includes a child element, called query, which contains the custom SQL query for the view.

For example:

{
    "MyView": {
        "query": "SELECT * FROM GoalHeadings WHERE MyColumn = 'value'"
    },
    "MyView2": {
        "query": "SELECT * FROM MyTable WHERE Id IN (1,2,3)"
    }
}

Use the UserDefinedViews connection property to specify the location of your JSON configuration file. For example:

"UserDefinedViews", "C:\Users\yourusername\Desktop\tmp\UserDefinedViews.json"

Define Views Using DDL Statements

The connector is also capable of creating and altering the schema via DDL Statements such as CREATE LOCAL VIEW, ALTER LOCAL VIEW, and DROP LOCAL VIEW.

Create a View

To create a new view using DDL statements, provide the view name and query as follows:

CREATE LOCAL VIEW [MyViewName] AS SELECT * FROM Customers LIMIT 20;

If no JSON file exists, the above code creates one. The view is then created in the JSON configuration file and is now discoverable. The JSON file location is specified by the UserDefinedViews connection property.

Alter a View

To alter an existing view, provide the name of an existing view alongside the new query you would like to use instead:

ALTER LOCAL VIEW [MyViewName] AS SELECT * FROM Customers WHERE TimeModified > '3/1/2020';

The view is then updated in the JSON configuration file.

Drop a View

To drop an existing view, provide the name of an existing schema alongside the new query you would like to use instead.

DROP LOCAL VIEW [MyViewName]

This removes the view from the JSON configuration file. It can no longer be queried.

Schema for User Defined Views

In order to avoid a view's name clashing with an actual entity in the data model, user defined views are exposed in the UserViews schema by default. To change the name of the schema used for UserViews, reset the UserViewsSchemaName property.

Work with User Defined Views

For example, a SQL statement with a user defined view called UserViews.RCustomers only lists customers in Raleigh:

SELECT * FROM Customers WHERE City = 'Raleigh';

An example of a query to the driver:

SELECT * FROM UserViews.RCustomers WHERE Status = 'Active';

Resulting in the effective query to the source:

SELECT * FROM Customers WHERE City = 'Raleigh' AND Status = 'Active';

That is a very simple example of a query to a user defined view that is effectively a combination of the view query and the view definition. It is possible to compose these queries in much more complex patterns. All SQL operations are allowed in both queries and are combined when appropriate.

SSL Configuration

Customize the SSL Configuration

By default, the connector attempts to negotiate TLS with the server. The server certificate is validated against the default system trusted certificate store. You can override how the certificate gets validated using the SSLServerCert connection property.

To specify another certificate, see the SSLServerCert connection property.

Data Model

The Microsoft Dynamics 365 connector models Microsoft Dynamics 365 data in relational tables, views, and stored procedures. The table definitions are dynamically obtained from the Microsoft Dynamics 365 OData service when you connect. Any changes to the metadata, such as new or removed columns, or changes in data type, are automatically loaded when you reconnect.

Views

The Views section, which lists read-only SQL tables, contains samples of what you might have access to in your Microsoft Dynamics 365 account.

The following views are shipped with the connector:

View Description
MultiSelectPickListAttributeMetaData Stores metadata for attributes with a MultiSelect OptionSet type. This metadata is only available when Edition is set to CustomerService, FieldService, Marketing, ProjectOperations, or Sales.
MultiSelectPickListOptions Contains the values (options) for MultiSelect Picklist metadata attributes. Only available when Edition is set to CustomerService, FieldService, Marketing, ProjectOperations, or Sales.
PickListAttributeMetaData Holds metadata for attributes of the Picklist type, detailing their options and configuration. Only available when Edition is set to CustomerService, FieldService, Marketing, ProjectOperations, or Sales.
PickListOptions Stores option values for Picklist metadata attributes, providing details for enumerated selections. Only available when Edition is set to CustomerService, FieldService, Marketing, ProjectOperations, or Sales.

Stored Procedures

Stored Procedures are actions that are invoked via SQL queries. They perform tasks beyond standard CRUD operations, such as managing associations and retrieving OAuth access tokens.

Tables

The connector uses the Microsoft Dynamics 365 OData services to dynamically retrieve all of your Microsoft Dynamics 365 tables when you connect.

Views

Views are similar to tables in the way that data is represented; however, views are read-only.

Queries can be executed against a view as if it were a normal table.

Microsoft Dynamics 365 Connector Views

Name Description
MultiSelectPickListAttributeMetaData Contains the Picklist metadata for an attribute type MultiSelect OptionSet. Note: This view is only available when Edition is set to either CustomerService, FieldService, Marketing, ProjectOperations or Sales.
MultiSelectPickListOptions Contains the Options Value of MultiSelect PicklistMetadata. Note: This view is only available when Edition is set to either CustomerService, FieldService, Marketing, ProjectOperations or Sales.
PickListAttributeMetaData Contains the metadata for an attribute type Picklist. Note: This view is only available when Edition is set to either CustomerService, FieldService, Marketing, ProjectOperations or Sales.
PickListOptions Contains the Options value of PickListMetaData. Note: This view is only available when Edition is set to either CustomerService, FieldService, Marketing, ProjectOperations or Sales.

MultiSelectPickListAttributeMetaData

Stores metadata for attributes with a MultiSelect OptionSet type. This metadata is only available when Edition is set to CustomerService, FieldService, Marketing, ProjectOperations, or Sales.

Select

The connector will use the Microsoft Dynamics 365 API to process WHERE clause conditions built with the following column and operator. The rest of the filter is executed client side within the connector.

  • TableName supports '=','IN' operators.

For example, the following queries are processed server side:

SELECT * FROM MultiSelectPickListAttributeMetaData WHERE TableName = 'teams'

SELECT * FROM MultiSelectPickListAttributeMetaData WHERE TableName IN ('accounts', 'teams')

To successfully query this view, it is important to include the TableName filter, as it is required. A value must be provided for the TableName attribute in order to access the relevant functionality.

Columns
Name Type Description
ColumnName [KEY] String The name of the column representing the attribute within the table.
MetadataId String The unique identifier for the metadata of the attribute.
OptionSet_Description_LocalizedLabels String Localized labels providing descriptions for the option set in various languages.
OptionSet_Description_UserLocalizedLabel_HasChanged String Indicates if the user-defined localized label for the description has been modified.
OptionSet_Description_UserLocalizedLabel_IsManaged Boolean Specifies whether the user-defined localized label for the description is managed.
OptionSet_Description_UserLocalizedLabel_Label String The actual text of the user-defined localized label for the description.
OptionSet_Description_UserLocalizedLabel_LanguageCode Integer The language code associated with the user-defined localized label for the description.
OptionSet_Description_UserLocalizedLabel_MetadataId String The unique identifier for the metadata of the user-defined localized label for the description.
OptionSet_DisplayName_LocalizedLabels String Localized labels providing display names for the option set in various languages.
OptionSet_DisplayName_UserLocalizedLabel_HasChanged String Indicates if the user-defined localized label for the display name has been modified.
OptionSet_DisplayName_UserLocalizedLabel_IsManaged Boolean Specifies whether the user-defined localized label for the display name is managed.
OptionSet_DisplayName_UserLocalizedLabel_Label String The actual text of the user-defined localized label for the display name.
OptionSet_DisplayName_UserLocalizedLabel_LanguageCode Integer The language code associated with the user-defined localized label for the display name.
OptionSet_DisplayName_UserLocalizedLabel_MetadataId String The unique identifier for the metadata of the user-defined localized label for the display name.
OptionSet_ExternalTypeName String The external type name associated with the option set, if applicable.
OptionSet_HasChanged String Indicates whether the option set has been modified since its creation.
OptionSet_IntroducedVersion String The version of the system in which the option set was introduced.
OptionSet_IsCustomizable_CanBeChanged Boolean Indicates whether the option set can be customized by the user.
OptionSet_IsCustomizable_ManagedPropertyLogicalName String The logical name of the managed property that defines whether the option set is customizable.
OptionSet_IsCustomizable_Value Boolean Specifies if the option set is marked as customizable.
OptionSet_IsCustomOptionSet Boolean Specifies if the option set is custom or predefined.
OptionSet_IsGlobal Boolean Indicates whether the option set is global (shared across entities) or local to a specific entity.
OptionSet_IsManaged Boolean Specifies if the option set is part of a managed solution.
OptionSet_MetadataId String The unique identifier for the metadata of the option set.
OptionSet_Name String The name of the option set.
OptionSet_OptionSetType String The type of the option set, defining its structure and usage.
OptionSet_ParentOptionSetName String The name of the parent option set if the current option set is part of a hierarchical structure.
TableName String The name of the table containing the attribute represented by the option set.

MultiSelectPickListOptions

Contains the values (options) for MultiSelect Picklist metadata attributes. Only available when Edition is set to CustomerService, FieldService, Marketing, ProjectOperations, or Sales.

Select

The connector will use the Microsoft Dynamics 365 API to process WHERE clause conditions built with the following column and operator. The rest of the filter is executed client side within the connector.

  • TableName supports '=','IN' operators.

For example, the following queries are processed server side:

SELECT * FROM MultiSelectPickListOptions WHERE TableName = 'teams'

SELECT * FROM MultiSelectPickListOptions WHERE TableName IN ('accounts', 'teams')

To successfully query this view, it is important to include the TableName filter, as it is required. A value must be provided for the TableName attribute in order to access the relevant functionality.

Columns
Name Type Description
ColumnName String The name of the column representing the multi-select picklist attribute.
Color String The color associated with the picklist option, typically used for UI representation.
ExternalValue String The external value associated with the picklist option, used for integration or mapping purposes.
HasChanged String Indicates whether the picklist option has been modified since its creation.
IsManaged Boolean Specifies whether the picklist option is part of a managed solution.
Label_LocalizedLabels String Localized labels providing display names for the picklist option in various languages.
Label_UserLocalizedLabel_HasChanged String Indicates if the user-defined localized label for the picklist option's label has been modified.
Label_UserLocalizedLabel_IsManaged Boolean Specifies whether the user-defined localized label for the picklist option's label is managed.
Label_UserLocalizedLabel_Label String The actual text of the user-defined localized label for the picklist option's label.
Label_UserLocalizedLabel_LanguageCode Integer The language code associated with the user-defined localized label for the picklist option's label.
Label_UserLocalizedLabel_MetadataId String The unique identifier for the metadata of the user-defined localized label for the picklist option's label.
Description_LocalizedLabels String Localized labels providing descriptions for the picklist option in various languages.
Description_UserLocalizedLabel_HasChanged String Indicates if the user-defined localized label for the picklist option's description has been modified.
Description_UserLocalizedLabel_IsManaged Boolean Specifies whether the user-defined localized label for the picklist option's description is managed.
Description_UserLocalizedLabel_Label String The actual text of the user-defined localized label for the picklist option's description.
Description_UserLocalizedLabel_LanguageCode Integer The language code associated with the user-defined localized label for the picklist option's description.
Description_UserLocalizedLabel_MetadataId String The unique identifier for the metadata of the user-defined localized label for the picklist option's description.
MetadataId String The unique identifier for the metadata of the picklist option.
ParentValues String The parent values associated with the picklist option, used when the option is part of a hierarchical structure.
Value Integer The numeric value assigned to the picklist option.
TableName String The name of the table containing the multi-select picklist attribute.

PickListAttributeMetaData

Holds metadata for attributes of the Picklist type, detailing their options and configuration. Only available when Edition is set to CustomerService, FieldService, Marketing, ProjectOperations, or Sales.

Select

The connector will use the Microsoft Dynamics 365 API to process WHERE clause conditions built with the following column and operator. The rest of the filter is executed client side within the connector.

  • TableName supports '=','IN' operators.

For example, the following queries are processed server side:

SELECT * FROM PickListAttributeMetaData WHERE TableName = 'teams'

SELECT * FROM PickListAttributeMetaData WHERE TableName IN ('accounts', 'teams')

To successfully query this view, it is important to include the TableName filter, as it is required. A value must be provided for the TableName attribute in order to access the relevant functionality.

Columns
Name Type Description
ColumnName [KEY] String The name of the column representing the picklist attribute within the table.
MetadataId String The unique identifier for the metadata of the picklist attribute.
OptionSet_Description_LocalizedLabels String Localized labels providing descriptions for the option set in various languages.
OptionSet_Description_UserLocalizedLabel_HasChanged String Indicates if the user-defined localized label for the description has been modified.
OptionSet_Description_UserLocalizedLabel_IsManaged Boolean Specifies whether the user-defined localized label for the description is managed.
OptionSet_Description_UserLocalizedLabel_Label String The actual text of the user-defined localized label for the description.
OptionSet_Description_UserLocalizedLabel_LanguageCode Integer The language code associated with the user-defined localized label for the description.
OptionSet_Description_UserLocalizedLabel_MetadataId String The unique identifier for the metadata of the user-defined localized label for the description.
OptionSet_DisplayName_LocalizedLabels String Localized labels providing display names for the option set in various languages.
OptionSet_DisplayName_UserLocalizedLabel_HasChanged String Indicates if the user-defined localized label for the display name has been modified.
OptionSet_DisplayName_UserLocalizedLabel_IsManaged Boolean Specifies whether the user-defined localized label for the display name is managed.
OptionSet_DisplayName_UserLocalizedLabel_Label String The actual text of the user-defined localized label for the display name.
OptionSet_DisplayName_UserLocalizedLabel_LanguageCode Integer The language code associated with the user-defined localized label for the display name.
OptionSet_DisplayName_UserLocalizedLabel_MetadataId String The unique identifier for the metadata of the user-defined localized label for the display name.
OptionSet_ExternalTypeName String The external type name associated with the option set, if applicable.
OptionSet_HasChanged String Indicates whether the option set has been modified since its creation.
OptionSet_IntroducedVersion String The version of the system in which the option set was introduced.
OptionSet_IsCustomizable_CanBeChanged Boolean Indicates whether the option set can be customized by the user.
OptionSet_IsCustomizable_ManagedPropertyLogicalName String The logical name of the managed property that defines whether the option set is customizable.
OptionSet_IsCustomizable_Value Boolean Specifies if the option set is marked as customizable.
OptionSet_IsCustomOptionSet Boolean Specifies if the option set is custom or predefined.
OptionSet_IsGlobal Boolean Indicates whether the option set is global (shared across entities) or local to a specific entity.
OptionSet_IsManaged Boolean Specifies if the option set is part of a managed solution.
OptionSet_MetadataId String The unique identifier for the metadata of the option set.
OptionSet_Name String The name of the option set.
OptionSet_OptionSetType String The type of the option set, defining its structure and usage.
OptionSet_ParentOptionSetName String The name of the parent option set if the current option set is part of a hierarchical structure.
TableName String The name of the table containing the picklist attribute.

PickListOptions

Stores option values for Picklist metadata attributes, providing details for enumerated selections. Only available when Edition is set to CustomerService, FieldService, Marketing, ProjectOperations, or Sales.

Select

The connector will use the Microsoft Dynamics 365 API to process WHERE clause conditions built with the following column and operator. The rest of the filter is executed client side within the connector.

  • TableName supports '=','IN' operators.

For example, the following queries are processed server side:

SELECT * FROM PickListOptions WHERE TableName = 'teams'

SELECT * FROM PickListOptions WHERE TableName IN ('accounts', 'teams')

To successfully query this view, it is important to include the TableName filter, as it is required. A value must be provided for the TableName attribute in order to access the relevant functionality.

Columns
Name Type Description
ColumnName String The name of the column representing the picklist attribute.
Color String The color associated with the picklist option, typically used for visual representation in the UI.
ExternalValue String An external value associated with the picklist option, useful for integration or mapping purposes.
HasChanged String Indicates whether the picklist option has been modified since its creation.
IsManaged Boolean Specifies whether the picklist option is part of a managed solution.
Label_LocalizedLabels String Localized labels providing display names for the picklist option in various languages.
Label_UserLocalizedLabel_HasChanged String Indicates whether the user-defined localized label for the picklist option has been modified.
Label_UserLocalizedLabel_IsManaged Boolean Specifies whether the user-defined localized label for the picklist option is managed.
Label_UserLocalizedLabel_Label String The actual text of the user-defined localized label for the picklist option.
Label_UserLocalizedLabel_LanguageCode Integer The language code associated with the user-defined localized label for the picklist option.
Label_UserLocalizedLabel_MetadataId String The unique identifier for the metadata of the user-defined localized label for the picklist option.
Description_LocalizedLabels String Localized labels providing descriptions for the picklist option in various languages.
Description_UserLocalizedLabel String The user-defined localized label for the description of the picklist option.
MetadataId String The unique identifier for the metadata of the picklist option.
ParentValues String The parent values associated with the picklist option, used when the option is part of a hierarchical structure.
Value Integer The numeric value assigned to the picklist option.
TableName String The name of the table containing the picklist attribute.

Stored Procedures

Stored procedures are function-like interfaces that extend the functionality of the connector beyond simple SELECT/INSERT/UPDATE/DELETE operations with Microsoft Dynamics 365.

Stored procedures accept a list of parameters, perform their intended function, and then return any relevant response data from Microsoft Dynamics 365, along with an indication of whether the procedure succeeded or failed.

Microsoft Dynamics 365 Connector Stored Procedures

Name Description
CreateAssociation Creates an association between two entities based on a navigation property. Set the IncludeNavigationProperties connection property to true in order to use this stored procedure.
CreateSchema Creates a schema file for the specified table or view. Note: This stored procedure only applies when Edition is set to either FinOpsOnline, FinOpsOnPremise or HumanResources.
GetAdminConsentURL Gets the admin consent URL that must be opened separately by an admin of a given domain to grant access to your application. Only needed when using custom OAuth credentials.
GetOAuthAccessToken Gets the auth token used to authenticate to the service.
GetOAuthAuthorizationUrl Gets an authorization URL from the data source. The authorization URL can be used to generate a verifier required to obtain the OAuth token.
ListAssociations Lists associations for a given table and navigation property. Set the IncludeNavigationProperties connection property to true in order to use this stored procedure.
ListNavigationProperties Lists navigation properties for a given table and the tables they are associated with. Navigation properties are used by the Association stored procedures. Set the IncludeNavigationProperties connection property to true in order to use this stored procedure.
RefreshOAuthAccessToken Obtains an updated OAuthAccessToken if passed a token to refresh.
RemoveAssociation Removes an association between two entities based on a navigation property. Set the IncludeNavigationProperties connection property to true in order to use this stored procedure.

CreateAssociation

Creates an association between two entities using the specified navigation property. This procedure is essential for linking related entities dynamically and requires the IncludeNavigationProperties connection property to be enabled.

Input
Name Type Required Description
FromId String False The unique identifier of the entity for which you are creating an association. This is essential to link the source entity to the target.
UrlId String False The full URL of the source resource for creating the association. This is required when the navigation property is abstract or when specifying a child type in cases where the navigation property entity type serves as a base type.
FromTable String True The name of the table containing the source entity. For example, if the FromId corresponds to an entity in the Customers table, set this parameter to 'Customers'.
ToNavigationProperty String True The name of the navigation property on which the association is being created. This value can be retrieved from the ListNavigationProperties function.
ToId String False The unique identifier of the target navigation entity. This ID should come from the table associated with the specified navigation property.
ToUrlId String False The full URL of the target resource to be associated. This is required when the navigation property is abstract or when specifying a child type in cases where the navigation property entity type serves as a base type.
Result Set Columns
Name Type Description
Success Boolean Indicates whether the operation was successful. Returns true if the association was created successfully; otherwise, returns false.

CreateSchema

Generates a schema file for a specified table or view, providing a structural blueprint for data organization.

CreateSchema

Creates a local schema file (.rsd) from an existing table or view in the data model.

The schema file is created in the directory set in the Location connection property when this procedure is executed. You can edit the file to include or exclude columns, rename columns, or adjust column datatypes.

The connector checks the Location to determine if the names of any .rsd files match a table or view in the data model. If there is a duplicate, the schema file will take precedence over the default instance of this table in the data model. If a schema file is present in Location that does not match an existing table or view, a new table or view entry is added to the data model of the connector.

Input
Name Type Required Description
TableName String True The name of the table or view for which the schema is being created. This parameter determines the structure to be exported.
FileName String False The complete file path and name where the schema file will be saved. For example, 'C:\Users\User\Desktop\D365\Contents.rsd'.
Result Set Columns
Name Type Description
FileData String The schema file data, encoded in Base64, if neither FileName nor FileStream inputs are provided. This allows the schema to be retrieved directly as a Base64-encoded string.
Result String Indicates whether the schema was successfully generated and downloaded. Returns true for success and false otherwise.

GetAdminConsentURL

Retrieves the admin consent URL required for granting domain-wide access to the application by an administrator. Necessary when using custom OAuth credentials.

Input
Name Type Required Description
CallbackUrl String False The URL to which the user is redirected after authorizing your application. This must match the Reply URL configured in the Microsoft Entra ID application settings.
State String False A value used to maintain state between the request and the callback. This should match the value you sent when requesting the authorization code to ensure security.
\* String False
Result Set Columns
Name Type Description
URL String The generated authorization URL that the user must visit in a web browser to grant consent and obtain the verifier token for your application.

GetOAuthAccessToken

Fetches the OAuth Access Token, which is used to authenticate and authorize API calls made to Dynamics 365.

Input
Name Type Required Description
AuthMode String False Specifies the type of authentication being used. Use 'App' for Windows applications or 'Web' for web-based applications. The default value is APP.
Verifier String False The verifier token returned by the service, required to obtain the access token. This is needed only when using the 'Web' authentication mode and is obtained by navigating to the URL provided by the GetOAuthAuthorizationUrl function.
CallbackUrl String False The URL to which the user is redirected after authorizing your application. This must match the Reply URL configured in the application's Microsoft Entra ID settings.
State String False A value used to maintain application state between the authorization request and response. This value is echoed back by the Dynamics authorization server and can be used for purposes such as resource redirection, nonce generation, and cross-site request forgery mitigation.
Prompt String False Determines the behavior of the authentication prompt. Defaults to 'select_account' to prompt the user to select an account. Use 'None' for no prompt, 'login' to force credential entry, or 'consent' to trigger the OAuth consent dialog for granting permissions.
\* String False
Result Set Columns
Name Type Description
OAuthAccessToken String The OAuth Access Token issued upon successful authentication. This token is used to access protected resources.
OAuthRefreshToken String An OAuth Refresh Token that can be used to obtain a new access token without requiring the user to reauthenticate.
ExpiresIn String The duration, in seconds, for which the access token is valid before it expires.

GetOAuthAuthorizationUrl

Retrieves the OAuth Authorization URL, allowing the client to direct the user's browser to the authorization server and initiate the OAuth process.

Input
Name Type Required Description
CallbackURL String False The URL to which the user is redirected after authorizing your application. This must match the Reply URL configured in the Microsoft Entra ID application settings.
State String False A value used to maintain application state between the authorization request and response. This value is echoed back by the Dynamics authorization server and can be used for purposes such as redirecting the user to the correct resource, nonce generation, and mitigating cross-site request forgery attacks.
Prompt String False Determines the behavior of the authentication prompt. Defaults to 'select_account', which prompts the user to select an account. Use 'None' for no prompt, 'login' to force credential entry, or 'consent' to trigger the OAuth consent dialog for granting app permissions.
\* String False
Result Set Columns
Name Type Description
Url String The generated authorization URL that the user must open to grant permission and authorize your application.

ListAssociations

Lists all associations for a specified table and its related navigation properties. Requires the IncludeNavigationProperties connection property to be enabled.

Input
Name Type Required Description
FromId String False The unique identifier of the entity for which you want to list associations. This helps specify the source entity.
UrlId String False An alternative to using FromId, representing the full URL of the resource for which associations are being listed. This is required when the navigation property is abstract or when specifying child types of a base-type navigation property entity.
FromTable String True The name of the table containing the source entity. For example, if the FromId corresponds to an entity in the 'Customers' table, set this parameter to 'Customers'.
NavigationProperty String True The navigation property associated with the entity for which you want to list associations. This can be obtained using the ListNavigationProperties function.
Result Set Columns
Name Type Description
Uri String The URL of the associated resource, providing a direct link to the related entity.

ListNavigationProperties

Displays the navigation properties for a specified table, showing their relationships with associated tables. Useful for defining entity associations and dependencies.

Input
Name Type Required Description
TableName String True The name of the table for which you want to list navigation properties. This table must exist in the database.
Result Set Columns
Name Type Description
Name String The name of the navigation property associated with the specified table. Navigation properties define relationships to other entities.
AssociatedTable String The name of the table that is related to the specified table through the navigation property.

RefreshOAuthAccessToken

Refreshes an expired OAuth Access Token to maintain continuous authenticated access to Dynamics 365 resources without requiring reauthorization from the user.

Input
Name Type Required Description
OAuthRefreshToken String True The OAuth Refresh Token obtained from the original authorization code exchange. This token is used to request a new access token without requiring user reauthentication.
\* String False
Result Set Columns
Name Type Description
OAuthAccessToken String The new OAuth Access Token issued by the service, used to authenticate and access protected resources.
OAuthRefreshToken String A new OAuth Refresh Token that can be used to obtain additional access tokens as needed.
ExpiresIn String The duration, in seconds, for which the new access token remains valid before expiring.

RemoveAssociation

Deletes an association between two entities based on a specified navigation property. This requires the IncludeNavigationProperties connection property to be enabled.

Input
Name Type Required Description
FromId String False The unique identifier of the source entity for which you are removing an association. This helps specify the source entity involved in the relationship.
UrlId String False An alternative to specifying the FromId. This is the full URL of the resource for which the association is being removed. It is required when the navigation property is abstract or when specifying child types for base-type navigation properties.
FromTable String True The name of the table containing the source entity for which you are removing an association. For example, if the FromId corresponds to an entity in the 'Customers' table, set this parameter to 'Customers'.
ToNavigationProperty String True The name of the navigation property for which the association is being removed. This value can be retrieved using the ListNavigationProperties function.
ToId String False The unique identifier of the target entity in the association. This ID should come from the table related to the specified navigation property.
ToUrlId String False An alternative to specifying the ToId. This is the full URL of the target resource in the association. It is required when the navigation property is abstract or when specifying child types for base-type navigation properties.
Result Set Columns
Name Type Description
Success Boolean Indicates whether the operation to remove the association was successful. Returns true if successful; otherwise, returns false.

System Tables

You can query the system tables described in this section to access schema information, information on data source functionality, and batch operation statistics.

Schema Tables

The following tables return database metadata for Microsoft Dynamics 365:

Data Source Tables

The following tables return information about how to connect to and query the data source:

  • sys_connection_props: Returns information on the available connection properties.
  • sys_sqlinfo: Describes the SELECT queries that the connector can offload to the data source.

Query Information Tables

The following table returns query statistics for data modification queries, including batch operations:

  • sys_identity: Returns information about batch operations or single updates.

sys_catalogs

Lists the available databases.

The following query retrieves all databases determined by the connection string:

SELECT * FROM sys_catalogs
Columns
Name Type Description
CatalogName String The database name.

sys_schemas

Lists the available schemas.

The following query retrieves all available schemas:

SELECT * FROM sys_schemas
Columns
Name Type Description
CatalogName String The database name.
SchemaName String The schema name.

sys_tables

Lists the available tables.

The following query retrieves the available tables and views:

SELECT * FROM sys_tables
Columns
Name Type Description
CatalogName String The database containing the table or view.
SchemaName String The schema containing the table or view.
TableName String The name of the table or view.
TableType String The table type (table or view).
Description String A description of the table or view.
IsUpdateable Boolean Whether the table can be updated.

sys_tablecolumns

Describes the columns of the available tables and views.

The following query returns the columns and data types for the GoalHeadings table:

SELECT ColumnName, DataTypeName FROM sys_tablecolumns WHERE TableName='GoalHeadings'
Columns
Name Type Description
CatalogName String The name of the database containing the table or view.
SchemaName String The schema containing the table or view.
TableName String The name of the table or view containing the column.
ColumnName String The column name.
DataTypeName String The data type name.
DataType Int32 An integer indicating the data type. This value is determined at run time based on the environment.
Length Int32 The storage size of the column.
DisplaySize Int32 The designated column's normal maximum width in characters.
NumericPrecision Int32 The maximum number of digits in numeric data. The column length in characters for character and date-time data.
NumericScale Int32 The column scale or number of digits to the right of the decimal point.
IsNullable Boolean Whether the column can contain null.
Description String A brief description of the column.
Ordinal Int32 The sequence number of the column.
IsAutoIncrement String Whether the column value is assigned in fixed increments.
IsGeneratedColumn String Whether the column is generated.
IsHidden Boolean Whether the column is hidden.
IsArray Boolean Whether the column is an array.
IsReadOnly Boolean Whether the column is read-only.
IsKey Boolean Indicates whether a field returned from sys_tablecolumns is the primary key of the table.

sys_procedures

Lists the available stored procedures.

The following query retrieves the available stored procedures:

SELECT * FROM sys_procedures
Columns
Name Type Description
CatalogName String The database containing the stored procedure.
SchemaName String The schema containing the stored procedure.
ProcedureName String The name of the stored procedure.
Description String A description of the stored procedure.
ProcedureType String The type of the procedure, such as PROCEDURE or FUNCTION.

sys_procedureparameters

Describes stored procedure parameters.

The following query returns information about all of the input parameters for the GetOAuthAccessToken stored procedure:

SELECT * FROM sys_procedureparameters WHERE ProcedureName = 'GetOAuthAccessToken' AND Direction = 1 OR Direction = 2
Columns
Name Type Description
CatalogName String The name of the database containing the stored procedure.
SchemaName String The name of the schema containing the stored procedure.
ProcedureName String The name of the stored procedure containing the parameter.
ColumnName String The name of the stored procedure parameter.
Direction Int32 An integer corresponding to the type of the parameter: input (1), input/output (2), or output(4). input/output type parameters can be both input and output parameters.
DataType Int32 An integer indicating the data type. This value is determined at run time based on the environment.
DataTypeName String The name of the data type.
NumericPrecision Int32 The maximum precision for numeric data. The column length in characters for character and date-time data.
Length Int32 The number of characters allowed for character data. The number of digits allowed for numeric data.
NumericScale Int32 The number of digits to the right of the decimal point in numeric data.
IsNullable Boolean Whether the parameter can contain null.
IsRequired Boolean Whether the parameter is required for execution of the procedure.
IsArray Boolean Whether the parameter is an array.
Description String The description of the parameter.
Ordinal Int32 The index of the parameter.
Values String The values you can set in this parameter are limited to those shown in this column. Possible values are comma-separated.
SupportsStreams Boolean Whether the parameter represents a file that you can pass as either a file path or a stream.
IsPath Boolean Whether the parameter is a target path for a schema creation operation.
Default String The value used for this parameter when no value is specified.
SpecificName String A label that, when multiple stored procedures have the same name, uniquely identifies each identically-named stored procedure. If there's only one procedure with a given name, its name is simply reflected here.
IsProvided Boolean Whether the procedure is added/implemented by , as opposed to being a native Microsoft Dynamics 365 procedure.

sys_keycolumns

Describes the primary and foreign keys.

The following query retrieves the primary key for the GoalHeadings table:

SELECT * FROM sys_keycolumns WHERE IsKey='True' AND TableName='GoalHeadings'
Columns
Name Type Description
CatalogName String The name of the database containing the key.
SchemaName String The name of the schema containing the key.
TableName String The name of the table containing the key.
ColumnName String The name of the key column.
IsKey Boolean Whether the column is a primary key in the table referenced in the TableName field.
IsForeignKey Boolean Whether the column is a foreign key referenced in the TableName field.
PrimaryKeyName String The name of the primary key.
ForeignKeyName String The name of the foreign key.
ReferencedCatalogName String The database containing the primary key.
ReferencedSchemaName String The schema containing the primary key.
ReferencedTableName String The table containing the primary key.
ReferencedColumnName String The column name of the primary key.

sys_foreignkeys

Describes the foreign keys.

The following query retrieves all foreign keys which refer to other tables:

SELECT * FROM sys_foreignkeys WHERE ForeignKeyType = 'FOREIGNKEY_TYPE_IMPORT'
Columns
Name Type Description
CatalogName String The name of the database containing the key.
SchemaName String The name of the schema containing the key.
TableName String The name of the table containing the key.
ColumnName String The name of the key column.
PrimaryKeyName String The name of the primary key.
ForeignKeyName String The name of the foreign key.
ReferencedCatalogName String The database containing the primary key.
ReferencedSchemaName String The schema containing the primary key.
ReferencedTableName String The table containing the primary key.
ReferencedColumnName String The column name of the primary key.
ForeignKeyType String Designates whether the foreign key is an import (points to other tables) or export (referenced from other tables) key.

sys_primarykeys

Describes the primary keys.

The following query retrieves the primary keys from all tables and views:

SELECT * FROM sys_primarykeys
Columns
Name Type Description
CatalogName String The name of the database containing the key.
SchemaName String The name of the schema containing the key.
TableName String The name of the table containing the key.
ColumnName String The name of the key column.
KeySeq String The sequence number of the primary key.
KeyName String The name of the primary key.

sys_indexes

Describes the available indexes. By filtering on indexes, you can write more selective queries with faster query response times.

The following query retrieves all indexes that are not primary keys:

SELECT * FROM sys_indexes WHERE IsPrimary='false'
Columns
Name Type Description
CatalogName String The name of the database containing the index.
SchemaName String The name of the schema containing the index.
TableName String The name of the table containing the index.
IndexName String The index name.
ColumnName String The name of the column associated with the index.
IsUnique Boolean True if the index is unique. False otherwise.
IsPrimary Boolean True if the index is a primary key. False otherwise.
Type Int16 An integer value corresponding to the index type: statistic (0), clustered (1), hashed (2), or other (3).
SortOrder String The sort order: A for ascending or D for descending.
OrdinalPosition Int16 The sequence number of the column in the index.

sys_connection_props

Returns information on the available connection properties and those set in the connection string.

The following query retrieves all connection properties that have been set in the connection string or set through a default value:

SELECT * FROM sys_connection_props WHERE Value <> ''
Columns
Name Type Description
Name String The name of the connection property.
ShortDescription String A brief description.
Type String The data type of the connection property.
Default String The default value if one is not explicitly set.
Values String A comma-separated list of possible values. A validation error is thrown if another value is specified.
Value String The value you set or a preconfigured default.
Required Boolean Whether the property is required to connect.
Category String The category of the connection property.
IsSessionProperty String Whether the property is a session property, used to save information about the current connection.
Sensitivity String The sensitivity level of the property. This informs whether the property is obfuscated in logging and authentication forms.
PropertyName String A camel-cased truncated form of the connection property name.
Ordinal Int32 The index of the parameter.
CatOrdinal Int32 The index of the parameter category.
Hierarchy String Shows dependent properties associated that need to be set alongside this one.
Visible Boolean Informs whether the property is visible in the connection UI.
ETC String Various miscellaneous information about the property.

sys_sqlinfo

Describes the SELECT query processing that the connector can offload to the data source.

Discovering the Data Source's SELECT Capabilities

Below is an example data set of SQL capabilities. Some aspects of SELECT functionality are returned in a comma-separated list if supported; otherwise, the column contains NO.

Name Description Possible Values
AGGREGATE_FUNCTIONS Supported aggregation functions. AVG, COUNT, MAX, MIN, SUM, DISTINCT
COUNT Whether COUNT function is supported. YES, NO
IDENTIFIER_QUOTE_OPEN_CHAR The opening character used to escape an identifier. [
IDENTIFIER_QUOTE_CLOSE_CHAR The closing character used to escape an identifier. ]
SUPPORTED_OPERATORS A list of supported SQL operators. =, >, <, >=, <=, <>, !=, LIKE, NOT LIKE, IN, NOT IN, IS NULL, IS NOT NULL, AND, OR
GROUP_BY Whether GROUP BY is supported, and, if so, the degree of support. NO, NO_RELATION, EQUALS_SELECT, SQL_GB_COLLATE
STRING_FUNCTIONS Supported string functions. LENGTH, CHAR, LOCATE, REPLACE, SUBSTRING, RTRIM, LTRIM, RIGHT, LEFT, UCASE, SPACE, SOUNDEX, LCASE, CONCAT, ASCII, REPEAT, OCTET, BIT, POSITION, INSERT, TRIM, UPPER, REGEXP, LOWER, DIFFERENCE, CHARACTER, SUBSTR, STR, REVERSE, PLAN, UUIDTOSTR, TRANSLATE, TRAILING, TO, STUFF, STRTOUUID, STRING, SPLIT, SORTKEY, SIMILAR, REPLICATE, PATINDEX, LPAD, LEN, LEADING, KEY, INSTR, INSERTSTR, HTML, GRAPHICAL, CONVERT, COLLATION, CHARINDEX, BYTE
NUMERIC_FUNCTIONS Supported numeric functions. ABS, ACOS, ASIN, ATAN, ATAN2, CEILING, COS, COT, EXP, FLOOR, LOG, MOD, SIGN, SIN, SQRT, TAN, PI, RAND, DEGREES, LOG10, POWER, RADIANS, ROUND, TRUNCATE
TIMEDATE_FUNCTIONS Supported date/time functions. NOW, CURDATE, DAYOFMONTH, DAYOFWEEK, DAYOFYEAR, MONTH, QUARTER, WEEK, YEAR, CURTIME, HOUR, MINUTE, SECOND, TIMESTAMPADD, TIMESTAMPDIFF, DAYNAME, MONTHNAME, CURRENT_DATE, CURRENT_TIME, CURRENT_TIMESTAMP, EXTRACT
REPLICATION_SKIP_TABLES Indicates tables skipped during replication.
REPLICATION_TIMECHECK_COLUMNS A string array containing a list of columns which will be used to check for (in the given order) to use as a modified column during replication.
IDENTIFIER_PATTERN String value indicating what string is valid for an identifier.
SUPPORT_TRANSACTION Indicates if the provider supports transactions such as commit and rollback. YES, NO
DIALECT Indicates the SQL dialect to use.
KEY_PROPERTIES Indicates the properties which identify the uniform database.
SUPPORTS_MULTIPLE_SCHEMAS Indicates if multiple schemas may exist for the provider. YES, NO
SUPPORTS_MULTIPLE_CATALOGS Indicates if multiple catalogs may exist for the provider. YES, NO
DATASYNCVERSION The Data Sync version needed to access this driver. Standard, Starter, Professional, Enterprise
DATASYNCCATEGORY The Data Sync category of this driver. Source, Destination, Cloud Destination
SUPPORTSENHANCEDSQL Whether enhanced SQL functionality beyond what is offered by the API is supported. TRUE, FALSE
SUPPORTS_BATCH_OPERATIONS Whether batch operations are supported. YES, NO
SQL_CAP All supported SQL capabilities for this driver. SELECT, INSERT, DELETE, UPDATE, TRANSACTIONS, ORDERBY, OAUTH, ASSIGNEDID, LIMIT, LIKE, BULKINSERT, COUNT, BULKDELETE, BULKUPDATE, GROUPBY, HAVING, AGGS, OFFSET, REPLICATE, COUNTDISTINCT, JOINS, DROP, CREATE, DISTINCT, INNERJOINS, SUBQUERIES, ALTER, MULTIPLESCHEMAS, GROUPBYNORELATION, OUTERJOINS, UNIONALL, UNION, UPSERT, GETDELETED, CROSSJOINS, GROUPBYCOLLATE, MULTIPLECATS, FULLOUTERJOIN, MERGE, JSONEXTRACT, BULKUPSERT, SUM, SUBQUERIESFULL, MIN, MAX, JOINSFULL, XMLEXTRACT, AVG, MULTISTATEMENTS, FOREIGNKEYS, CASE, LEFTJOINS, COMMAJOINS, WITH, LITERALS, RENAME, NESTEDTABLES, EXECUTE, BATCH, BASIC, INDEX
PREFERRED_CACHE_OPTIONS A string value specifies the preferred cacheOptions.
ENABLE_EF_ADVANCED_QUERY Indicates if the driver directly supports advanced queries coming from Entity Framework. If not, queries will be handled client side. YES, NO
PSEUDO_COLUMNS A string array indicating the available pseudo columns.
MERGE_ALWAYS If the value is true, The Merge Mode is forcibly executed in Data Sync. TRUE, FALSE
REPLICATION_MIN_DATE_QUERY A select query to return the replicate start datetime.
REPLICATION_MIN_FUNCTION Allows a provider to specify the formula name to use for executing a server side min.
REPLICATION_START_DATE Allows a provider to specify a replicate startdate.
REPLICATION_MAX_DATE_QUERY A select query to return the replicate end datetime.
REPLICATION_MAX_FUNCTION Allows a provider to specify the formula name to use for executing a server side max.
IGNORE_INTERVALS_ON_INITIAL_REPLICATE A list of tables which will skip dividing the replicate into chunks on the initial replicate.
CHECKCACHE_USE_PARENTID Indicates whether the CheckCache statement should be done against the parent key column. TRUE, FALSE
CREATE_SCHEMA_PROCEDURES Indicates stored procedures that can be used for generating schema files.

The following query retrieves the operators that can be used in the WHERE clause:

SELECT * FROM sys_sqlinfo WHERE Name = 'SUPPORTED_OPERATORS'

Note that individual tables may have different limitations or requirements on the WHERE clause; refer to the Data Model section for more information.

Columns
Name Type Description
NAME String A component of SQL syntax, or a capability that can be processed on the server.
VALUE String Detail on the supported SQL or SQL syntax.

sys_identity

Returns information about attempted modifications.

The following query retrieves the Ids of the modified rows in a batch operation:

SELECT * FROM sys_identity
Columns
Name Type Description
Id String The database-generated ID returned from a data modification operation.
Batch String An identifier for the batch. 1 for a single operation.
Operation String The result of the operation in the batch: INSERTED, UPDATED, or DELETED.
Message String SUCCESS or an error message if the update in the batch failed.

Data Type Mapping

Data Type Mappings

The connector maps types from the data source to the corresponding data type available in the schema. The table below documents these mappings.

Microsoft Dynamics 365 (OData V4) Schema
Edm.Binary binary
Edm.Boolean bool
Edm.Date datetime
Edm.DateTimeOffset datetime
Edm.Decimal decimal
Edm.Double double
Edm.Guid guid
Edm.Int32 int
Edm.String string
Edm.TimeOfDay time

Advanced Configurations Properties

The advanced configurations properties are the various options that can be used to establish a connection. This section provides a complete list of the options you can configure. Click the links for further details.

Authentication

Property Description
AuthScheme Specifies the type of authentication to use when connecting to Microsoft Dynamics 365. If this property is left blank, the default authentication is used.
OrganizationURL The URL to your Dynamics 365 organization, sometimes referred to as the resource. To find the correct URL for your Microsoft Dynamics 365 instance, search the Web Services page.
Edition Specifies the Microsoft Dynamics 365 edition in use. If not specified, the default (FinOpsOnline) is assumed.
ADFSServer Identifies the FinOpsOnPremise ADFS Server to be used for authentication. To find this server name, enter echo %logonserver% at the command prompt.
ApiVersion Identifies the API version being used. Keep this setting up to date to ensure that the full range of available API features are accessed during authentication.

Azure Authentication

Property Description
AzureTenant Identifies the Microsoft Dynamics 365 tenant being used to access data, either by name (for example, contoso.omnicrosoft.com) or ID. (Conditional).
AzureEnvironment Specifies the Azure network environment to which you will connect. Must be the same network to which your Azure account was added.

OAuth

Property Description
InitiateOAuth Specifies the process for obtaining or refreshing the OAuth access token, which maintains user access while an authenticated, authorized user is working.
OAuthClientId Specifies the client ID that was assigned the custom OAuth application was created. (Also known as the consumer key.) This ID registers the custom application with the OAuth authorization server.
OAuthClientSecret Specifies the client secret that was assigned when the custom OAuth application was created. (Also known as the consumer secret ). This secret registers the custom application with the OAuth authorization server.
OAuthAccessToken A token received after authentication to the OAuth network, granting the user access. The access token is used in place of the user's login ID and password, which stay on the server.
OAuthSettingsLocation Specifies the location of the settings file where OAuth values are saved. Storing OAuth settings in a central location avoids the need for users to enter OAuth connection properties manually each time they log in. It also enables credentials to be shared across connections or processes.
CallbackURL The URL users return to after authenticating to Microsoft Dynamics 365 via OAuth.
OAuthGrantType Specifies the grant type for the chosen OAuth flow. This value should be the same as the grant_type that was set during OAuth custom application creation.
OAuthVerifier Specifies a verifier code returned from the OAuthAuthorizationURL . Used when authenticating to OAuth on a headless server, where a browser can't be launched. Requires both OAuthSettingsLocation and OAuthVerifier to be set.
OAuthRefreshToken Gets and refreshes the currently-active OAuth Access Token.
OAuthExpiresIn Specifies the duration in seconds, of an OAuth Access Token's lifetime. The token can be reissued to keep access alive as long as the user keeps working.
OAuthTokenTimestamp Displays a Unix epoch timestamp in milliseconds that shows how long ago the current Access Token was created.

JWT OAuth

Property Description
OAuthJWTCert The JWT Certificate store.
OAuthJWTCertType The type of key store containing the JWT Certificate.
OAuthJWTCertPassword The password for the OAuth JWT certificate used to access a certificate store that requires a password. If the certificate store does not require a password, leave this property blank.
OAuthJWTCertSubject The subject of the OAuth JWT certificate used to locate a matching certificate in the store. Supports partial matches and the wildcard '*' to select the first certificate.
OAuthJWTIssuer The issuer of the Java Web Token.
OAuthJWTSubject The user subject for which the application is requesting delegated access.

SSL

Property Description
SSLServerCert Specifies the certificate to be accepted from the server when connecting using TLS/SSL.

Schema

Property Description
Location Specifies the location of a directory containing schema files that define tables, views, and stored procedures. Depending on your service's requirements, this may be expressed as either an absolute path or a relative path.
BrowsableSchemas Optional setting that restricts the schemas reported to a subset of all available schemas. For example, BrowsableSchemas=SchemaA, SchemaB, SchemaC .
Tables Optional setting that restricts the tables reported to a subset of all available tables. For example, Tables=TableA, TableB, TableC .
Views Optional setting that restricts the views reported to a subset of the available tables. For example, Views=ViewA, ViewB, ViewC .

Miscellaneous

Property Description
AllowDuplicateRecords Notes whether or not the driver will permit the adding of duplicate records during INSERT operations. To create the record (or update it if a duplicate is found), set this to true. To avoid adding duplicate records, set this to false.
ContinueOnError Specifies whether batch requests should continue after encountering an error. (OData 4.0 and higher only.).
CrossCompany Specifies whether data should be pulled only the user's default company, or for all companies. (FinOpsOnline, FinOpsOnPremise, or HumanResources only.).
CustomUrlParams A string of custom URL parameters to be included with the HTTP request, in the form field1=value1&field2=value2&field3=value3.
EnableAtomicBatchOperations This property indicates that all Create, Update, and Delete (CUD) requests in a batch are handled as a single action. The success of the entire batch depends on the outcome of all requests. If any single request fails, the whole batch fails and no changes are applied.
EntityTypes When using entity definitions define what type of entities to include during metadata discovery.
IncludeFormattedValues Specifies whether columns that hold formatted values should be exposed.
IncludeLookUpLogicalName Indicates if the referenced entity name for a LookUp field should be exposed.
IncludeNavigationKeys Specifies whether the column listing should include the primary keys of navigation properties. (JSON responses only).
IncludeNavigationProperties Specifies whether the column listing should include navigation properties.
MaxRows Specifies the maximum rows returned for queries without aggregation or GROUP BY.
MinimumColumnSize Specifies the minimum size of an Edm.String column, expressed as a number of characters. If the column size reported by Microsoft Dynamics 365 has a value lower than this value, the ADO.NET Provider for Microsoft Dynamics 365 overrides the service value with the one defined in the connection string.
Other Specifies additional hidden properties for specific use cases. These are not required for typical provider functionality. Use a semicolon-separated list to define multiple properties.
Pagesize Specifies the maximum number of results to return from Microsoft Dynamics 365, per page. This setting overrides the default page size set by the datasource, which is optimized for most use cases.
PseudoColumns Specifies the pseudocolumns to expose as table columns. Use the format 'TableName=ColumnName;TableName=ColumnName'. The default is an empty string, which disables this property.
Timeout Specifies the maximum time, in seconds, that the provider waits for a server response before throwing a timeout error. The default is 60 seconds. Set to 0 to disable the timeout.
UseClientSidePaging Specifies whether or not Microsoft Dynamics 365 should return data using client-side paging, if your source supports it. If set to false, Microsoft Dynamics 365 uses server-side paging.
UseDynamicStoredProcedures Indicates whether or not stored procedures should be listed dynamically.
UseEntityDefinitions Specifies that queries should use entity definition metadata endpoints, rather than the standard $metadata endpoint.
UserDefinedViews Specifies a filepath to a JSON configuration file defining custom views. The provider automatically detects and uses the views specified in this file.

Authentication

This section provides a complete list of authentication properties you can configure.

Property Description
AuthScheme Specifies the type of authentication to use when connecting to Microsoft Dynamics 365. If this property is left blank, the default authentication is used.
OrganizationURL The URL to your Dynamics 365 organization, sometimes referred to as the resource. To find the correct URL for your Microsoft Dynamics 365 instance, search the Web Services page.
Edition Specifies the Microsoft Dynamics 365 edition in use. If not specified, the default (FinOpsOnline) is assumed.
ADFSServer Identifies the FinOpsOnPremise ADFS Server to be used for authentication. To find this server name, enter echo %logonserver% at the command prompt.
ApiVersion Identifies the API version being used. Keep this setting up to date to ensure that the full range of available API features are accessed during authentication.

AuthScheme

Specifies the type of authentication to use when connecting to Microsoft Dynamics 365. If this property is left blank, the default authentication is used.

Possible Values

Microsoft Entra ID, AzureMSI, AzureServicePrincipal, AzureServicePrincipalCert

Data Type

string

Default Value

Microsoft Entra ID

Remarks
  • Microsoft Entra ID: Perform Microsoft Entra ID (user-based) OAuth authentication.
  • AzureMSI: Automatically obtain Microsoft Entra ID Managed Service Identity credentials when running on an Azure VM.
  • AzureServicePrincipal: Authenticate as a Microsoft Entra service principal (role-based, application-based) using a Client Secret.
  • AzureServicePrincipalCert: Authenticate as a Microsoft Entra service principal (role-based, application-based) using a Certificate.

For information about creating a custom application to authenticate with Microsoft Entra ID, see Creating a Microsoft Entra ID Application.

For information about creating a custom application to authenticate with Microsoft Entra ID Service Principal, see Creating a Microsoft Entra ID App with Service Principal.

OrganizationURL

The URL to your Dynamics 365 organization, sometimes referred to as the resource. To find the correct URL for your Microsoft Dynamics 365 instance, search the Web Services page.

Data Type

string

Default Value

""

Remarks

Resource URL format is usually similar to https://abc123.cloudax.dynamics.com/, except when the Edition is HumanResources. HumanResources URLs typically look like: https://{cluster}.hr.talent.dynamics.com/namespaces/{namespace_guid}/.

Edition

Specifies the Microsoft Dynamics 365 edition in use. If not specified, the default (FinOpsOnline) is assumed.

Possible Values

CustomerService, FieldService, FinOpsOnline, FinOpsOnPremise, HumanResources, Marketing, ProjectOperations, Sales, Commerce

Data Type

string

Default Value

FinOpsOnline

Remarks

If the edition is FinOpsOnPremise, you must also specify the ADFSServer.

ADFSServer

Identifies the FinOpsOnPremise ADFS Server to be used for authentication. To find this server name, enter echo %logonserver% at the command prompt.

Data Type

string

Default Value

""

Remarks

Use only when Edition is set to FinOpsOnPremise. If no ADFS server name is specified, the property is ignored.

ApiVersion

Identifies the API version being used. Keep this setting up to date to ensure that the full range of available API features are accessed during authentication.

Data Type

string

Default Value

9.2

Remarks

The service API provides a means to access new features in the data model. When you change the ApiVersion, it changes what service document is used to define the tables and columns exposed by the driver.

Azure Authentication

This section provides a complete list of Azure authentication properties you can configure.

Property Description
AzureTenant Identifies the Microsoft Dynamics 365 tenant being used to access data, either by name (for example, contoso.omnicrosoft.com) or ID. (Conditional).
AzureEnvironment Specifies the Azure network environment to which you will connect. Must be the same network to which your Azure account was added.

AzureTenant

Identifies the Microsoft Dynamics 365 tenant being used to access data, either by name (for example, contoso.omnicrosoft.com) or ID. (Conditional).

Data Type

string

Default Value

""

Remarks

A tenant is a digital representation of your organization, primarily associated with a domain (for example, microsoft.com). The tenant is managed through a Tenant ID (also known as the directory ID), which is specified whenever you assign users permissions to access or manage Azure resources.

To locate the directory ID in the Azure Portal, navigate to Microsoft Entra ID > Properties.

Specifying AzureTenant is required when AuthScheme = either AzureServicePrincipal or AzureServicePrincipalCert, or if AuthScheme = Microsoft Entra ID and the user belongs to more than one tenant.

AzureEnvironment

Specifies the Azure network environment to which you will connect. Must be the same network to which your Azure account was added.

Possible Values

GLOBAL, CHINA, USGOVT, USGOVTDOD

Data Type

string

Default Value

GLOBAL

Remarks

Required if your Azure account is part of a different network than the Global network, such as China, USGOVT, or USGOVTDOD.

OAuth

This section provides a complete list of OAuth properties you can configure.

Property Description
InitiateOAuth Specifies the process for obtaining or refreshing the OAuth access token, which maintains user access while an authenticated, authorized user is working.
OAuthClientId Specifies the client ID that was assigned the custom OAuth application was created. (Also known as the consumer key.) This ID registers the custom application with the OAuth authorization server.
OAuthClientSecret Specifies the client secret that was assigned when the custom OAuth application was created. (Also known as the consumer secret ). This secret registers the custom application with the OAuth authorization server.
OAuthAccessToken A token received after authentication to the OAuth network, granting the user access. The access token is used in place of the user's login ID and password, which stay on the server.
OAuthSettingsLocation Specifies the location of the settings file where OAuth values are saved. Storing OAuth settings in a central location avoids the need for users to enter OAuth connection properties manually each time they log in. It also enables credentials to be shared across connections or processes.
CallbackURL The URL users return to after authenticating to Microsoft Dynamics 365 via OAuth.
OAuthGrantType Specifies the grant type for the chosen OAuth flow. This value should be the same as the grant_type that was set during OAuth custom application creation.
OAuthVerifier Specifies a verifier code returned from the OAuthAuthorizationURL . Used when authenticating to OAuth on a headless server, where a browser can't be launched. Requires both OAuthSettingsLocation and OAuthVerifier to be set.
OAuthRefreshToken Gets and refreshes the currently-active OAuth Access Token.
OAuthExpiresIn Specifies the duration in seconds, of an OAuth Access Token's lifetime. The token can be reissued to keep access alive as long as the user keeps working.
OAuthTokenTimestamp Displays a Unix epoch timestamp in milliseconds that shows how long ago the current Access Token was created.

InitiateOAuth

Specifies the process for obtaining or refreshing the OAuth access token, which maintains user access while an authenticated, authorized user is working.

Possible Values

OFF, REFRESH, GETANDREFRESH

Data Type

string

Default Value

OFF

Remarks

OAuth is an authorization framework that enables applications to obtain limited access to user accounts on an HTTP service. The OAuth flow defines the method to be used for logging in users, exchanging their credentials for an OAuth access token to be used for authentication, and providing limited access to applications.

Microsoft Dynamics 365 supports the following options for initiating OAuth access:

  1. OFF: No automatic OAuth flow initiation. The OAuth flow is handled entirely by the user, who will take action to obtain their OAuthAccessToken. Note that with this setting the user must refresh the token manually and reconnect with an updated OAuthAccessToken property when the current token expires.
  2. GETANDREFRESH: The OAuth flow is handled entirely by the connector. If a token already exists, it is refreshed when necessary. If no token currently exists, it will be obtained by prompting the user to login.
  3. REFRESH: The user handles obtaining the OAuth Access Token and sets up the sequence for refreshing the OAuth Access Token. (The user is never prompted to log in to authenticate. After the user logs in, the connector handles the refresh of the OAuth Access Token.

OAuthClientId

Specifies the client ID that was assigned the custom OAuth application was created. (Also known as the consumer key.) This ID registers the custom application with the OAuth authorization server.

Data Type

string

Default Value

""

Remarks

OAuthClientId is one of a handful of connection parameters that need to be set before users can authenticate via OAuth. For details, see Establishing a Connection.

OAuthClientSecret

Specifies the client secret that was assigned when the custom OAuth application was created. (Also known as the consumer secret ). This secret registers the custom application with the OAuth authorization server.

Data Type

string

Default Value

""

Remarks

OAuthClientSecret is one of a handful of connection parameters that need to be set before users can authenticate via OAuth. For details, see Establishing a Connection.

OAuthAccessToken

A token received after authentication to the OAuth network, granting the user access. The access token is used in place of the user's login ID and password, which stay on the server.

Data Type

string

Default Value

""

Remarks

The OAuth access token has a server-dependent timeout, limiting user access. This is set using the OAuthExpiresIn property. However, it can be reissued between requests to keep access alive as long as the user keeps working.

If InitiateOAuth is set to REFRESH, we recommend that you also set both OAuthExpiresIn and OAuthTokenTimestamp. The connector uses these properties to determine when the token expires so it can refresh most efficiently.

If OAuthExpiresIn and OAuthTokenTimestamp are not specified, the connector refreshes the token immediately.

OAuthSettingsLocation

Specifies the location of the settings file where OAuth values are saved. Storing OAuth settings in a central location avoids the need for users to enter OAuth connection properties manually each time they log in. It also enables credentials to be shared across connections or processes.

Data Type

string

Default Value

%APPDATA%\Dynamics365 Data Provider\OAuthSettings.txt

Remarks

You can store OAuth values in a central file for shared access to those values, in either of the following ways:

  • Set InitiateOAuth to either GETANDREFRESH or REFRESH and specify a filepath to the OAuth settings file.
  • Use memory storage to load the credentials into static memory.

The following sections provide more detail on each of these methods.

Specifying the OAuthSettingsLocation Filepath

The default OAuth setting location is %APPDATA%\Dynamics365 Data Provider\OAuthSettings.txt, with %APPDATA% set to the user's configuration directory.

Default values vary, depending on the user's operating system.

  • Windows (ODBC and Power BI): registry://%DSN%
  • Windows: %APPDATA%Dynamics365 Data Provider\OAuthSettings.txt
  • Mac: %APPDATA%//Dynamics365 Data Provider/OAuthSettings.txt
  • Linux: %APPDATA%//Dynamics365 Data Provider/OAuthSettings.txt
Loading Credentials Via Memory Storage

Memory locations are specified by using a value starting with memory://, followed by a unique identifier for that set of credentials (for example, memory://user1). The identifier can be anything you choose, but it should be unique to the user.

Unlike file-based storage, where credentials persist across connections, memory storage loads the credentials into static memory and the credentials are shared between connections using the same identifier for the life of the process. To persist credentials outside the current process, you must manually store the credentials prior to closing the connection. This enables you to set them in the connection when the process is started again.

To retrieve OAuth property values, query the sys_connection_props system table. If there are multiple connections using the same credentials, the properties are read from the previously closed connection.

Supported Storage Types

  • **memory://**: Stores OAuth tokens in-memory (unique identifier, shared within same process, etc.)
  • **registry://**: Only supported in the Windows ODBC and Power BI editions. Stores OAuth tokens in the registry under the DSN settings. Must end in a DSN name like registry://Microsoft` Dynamics 365 connector Data Source`, orregistry://%DSN%``.
  • %DSN%: The name of the DSN you are connecting with.
  • Default (no prefix): Stores OAuth tokens within files. The value can be either an absolute path, or a path starting with %APPDATA% or %PROGRAMFILES%.

CallbackURL

The URL users return to after authenticating to Microsoft Dynamics 365 via OAuth.

Data Type

string

Default Value

""

Remarks

During the authentication process, the OAuth authorization server redirects the user to this URL. This value must match the callback URL you specified when you created your custom OAuth application.

OAuthGrantType

Specifies the grant type for the chosen OAuth flow. This value should be the same as the grant_type that was set during OAuth custom application creation.

Possible Values

CODE, CLIENT, PASSWORD

Data Type

string

Default Value

CLIENT

Remarks

In most cases, the default grant type should not be modified. For information about the most common OAuth grant types and the trade-offs between them, see https://oauth.net/2/grant-types/.

OAuthVerifier

Specifies a verifier code returned from the OAuthAuthorizationURL . Used when authenticating to OAuth on a headless server, where a browser can't be launched. Requires both OAuthSettingsLocation and OAuthVerifier to be set.

Data Type

string

Default Value

""

Remarks

For detailed instructions about how to obtain the OAuthVerifier value, see .

OAuthRefreshToken

Gets and refreshes the currently-active OAuth Access Token.

Data Type

string

Default Value

""

Remarks

When InitiateOAuth is set to REFRESH, the first time the token expires the connector uses the OAuthRefreshToken to get a new access and refresh tokens from the server. After the first refresh, the connector uses the access and refresh tokens stored in OAuthSettingsLocation instead of the tokens from the connection properties. The access token is used in place of the user's login ID and password, which stay on the server.

The OAuth access token has a server-dependent timeout, limiting user access, set using the OAuthExpiresIn property. When OAuthRefreshToken is called, it refreshes the OAuth access token so the user can keep working without needing to re-authenticate.

OAuthExpiresIn

Specifies the duration in seconds, of an OAuth Access Token's lifetime. The token can be reissued to keep access alive as long as the user keeps working.

Data Type

string

Default Value

""

Remarks

The OAuth Access Token is assigned to an authenticated user, granting that user access to the network for a specified period of time. The access token is used in place of the user's login ID and password, which stay on the server.

An access token created by the server is only valid for a limited time. OAuthExpiresIn is the number of seconds the token is valid from when it was created. For example, a token generated at 2024-01-29 20:00:00 UTC that expires at 2024-01-29 21:00:00 UTC (an hour later) would have an OAuthExpiresIn value of 3600, no matter what the current time is.

To determine how long the user has before the Access Token will expire, use OAuthTokenTimestamp.

OAuthTokenTimestamp

Displays a Unix epoch timestamp in milliseconds that shows how long ago the current Access Token was created.

Data Type

string

Default Value

""

Remarks

The OAuth Access Token is assigned to an authenticated user, granting that user access to the network for a specified period of time. The access token is used in place of the user's login ID and password, which stay on the server.

An access token created by the server is only valid for a limited time. OAuthTokenTimestamp is the Unix timestamp when the server created the token. For example, OAuthTokenTimestamp=1706558400 indicates the OAuthAccessToken was generated by the server at 2024-01-29 20:00:00 UTC.

JWT OAuth

This section provides a complete list of JWT OAuth properties you can configure.

Property Description
OAuthJWTCert The JWT Certificate store.
OAuthJWTCertType The type of key store containing the JWT Certificate.
OAuthJWTCertPassword The password for the OAuth JWT certificate used to access a certificate store that requires a password. If the certificate store does not require a password, leave this property blank.
OAuthJWTCertSubject The subject of the OAuth JWT certificate used to locate a matching certificate in the store. Supports partial matches and the wildcard '*' to select the first certificate.
OAuthJWTIssuer The issuer of the Java Web Token.
OAuthJWTSubject The user subject for which the application is requesting delegated access.

OAuthJWTCert

The JWT Certificate store.

Data Type

string

Default Value

""

Remarks

The name of the certificate store for the client certificate.

The OAuthJWTCertType field specifies the type of the certificate store specified by OAuthJWTCert. If the store is password protected, specify the password in OAuthJWTCertPassword.

OAuthJWTCert is used in conjunction with the OAuthJWTCertSubject

field in order to specify client certificates. If OAuthJWTCert has a value, and OAuthJWTCertSubject is set, a search for a certificate is initiated. Please refer to the OAuthJWTCertSubject field for details.

Designations of certificate stores are platform-dependent.

The following are designations of the most common User and Machine certificate stores in Windows:

Property Description
MY A certificate store holding personal certificates with their associated private keys.
CA Certifying authority certificates.
ROOT Root certificates.
SPC Software publisher certificates.

In Java, the certificate store normally is a file containing certificates and optional private keys.

When the certificate store type is PFXFile, this property must be set to the name of the file. When the type is PFXBlob, the property must be set to the binary contents of a PFX file (i.e. PKCS12 certificate store).

OAuthJWTCertType

The type of key store containing the JWT Certificate.

Possible Values

USER, MACHINE, PFXFILE, PFXBLOB, JKSFILE, JKSBLOB, PEMKEY_FILE, PEMKEY_BLOB, PUBLIC_KEY_FILE, PUBLIC_KEY_BLOB, SSHPUBLIC_KEY_FILE, SSHPUBLIC_KEY_BLOB, P7BFILE, PPKFILE, XMLFILE, XMLBLOB, BCFKSFILE, BCFKSBLOB

Data Type

string

Default Value

USER

Remarks

This property can take one of the following values:

Property Description
USER For Windows, this specifies that the certificate store is a certificate store owned by the current user. Note: This store type is not available in Java.
MACHINE For Windows, this specifies that the certificate store is a machine store. Note: this store type is not available in Java.
PFXFILE The certificate store is the name of a PFX (PKCS12) file containing certificates.
PFXBLOB The certificate store is a string (base-64-encoded) representing a certificate store in PFX (PKCS12) format.
JKSFILE The certificate store is the name of a Java key store (JKS) file containing certificates. Note: this store type is only available in Java.
JKSBLOB The certificate store is a string (base-64-encoded) representing a certificate store in Java key store (JKS) format. Note: this store type is only available in Java.
PEMKEY_FILE The certificate store is the name of a PEM-encoded file that contains a private key and an optional certificate.
PEMKEY_BLOB The certificate store is a string (base64-encoded) that contains a private key and an optional certificate.
PUBLIC_KEY_FILE The certificate store is the name of a file that contains a PEM- or DER-encoded public key certificate.
PUBLIC_KEY_BLOB The certificate store is a string (base-64-encoded) that contains a PEM- or DER-encoded public key certificate.
SSHPUBLIC_KEY_FILE The certificate store is the name of a file that contains an SSH-style public key.
SSHPUBLIC_KEY_BLOB The certificate store is a string (base-64-encoded) that contains an SSH-style public key.
P7BFILE The certificate store is the name of a PKCS7 file containing certificates.
PPKFILE The certificate store is the name of a file that contains a PPK (PuTTY Private Key).
XMLFILE The certificate store is the name of a file that contains a certificate in XML format.
XMLBLOB The certificate store is a string that contains a certificate in XML format.
BCFKSFILE The certificate store is the name of a file that contains an Bouncy Castle keystore.
BCFKSBLOB The certificate store is a string (base-64-encoded) that contains a Bouncy Castle keystore.

OAuthJWTCertPassword

The password for the OAuth JWT certificate used to access a certificate store that requires a password. If the certificate store does not require a password, leave this property blank.

Data Type

string

Default Value

""

Remarks

This property specifies the password needed to open the certificate store, but only if the store type requires one. To determine if a password is necessary, refer to the documentation or configuration for your specific certificate store.

OAuthJWTCertSubject

The subject of the OAuth JWT certificate used to locate a matching certificate in the store. Supports partial matches and the wildcard '*' to select the first certificate.

Data Type

string

Default Value

*

Remarks

The value of this property is used to locate a matching certificate in the store. The search process works as follows:

  • If an exact match for the subject is found, the corresponding certificate is selected.
  • If no exact match is found, the store is searched for certificates whose subjects contain the property value.
  • If no match is found, no certificate is selected.

You can set the value to '*' to automatically select the first certificate in the store. The certificate subject is a comma-separated list of distinguished name fields and values. For example: CN=www.server.com, OU=test, C=US, E=example@jbexample.com. Common fields include:

Field Meaning
CN Common Name. This is commonly a host name like www.server.com.
O Organization
OU Organizational Unit
L Locality
S State
C Country
E Email Address

If a field value contains a comma, enclose it in quotes. For example: "O=ACME, Inc.".

OAuthJWTIssuer

The issuer of the Java Web Token.

Data Type

string

Default Value

""

Remarks

The issuer of the Java Web Token. This is typically either the Client ID or Email Address of the OAuth Application.

OAuthJWTSubject

The user subject for which the application is requesting delegated access.

Data Type

string

Default Value

""

Remarks

The user subject for which the application is requesting delegated access. Typically, the user account name or email address.

SSL

This section provides a complete list of SSL properties you can configure.

Property Description
SSLServerCert Specifies the certificate to be accepted from the server when connecting using TLS/SSL.

SSLServerCert

Specifies the certificate to be accepted from the server when connecting using TLS/SSL.

Data Type

string

Default Value

""

Remarks

If using a TLS/SSL connection, this property can be used to specify the TLS/SSL certificate to be accepted from the server. Any other certificate that is not trusted by the machine is rejected.

This property can take the following forms:

Description Example
A full PEM Certificate (example shortened for brevity) -----BEGIN CERTIFICATE----- MIIChTCCAe4CAQAwDQYJKoZIhv......Qw== -----END CERTIFICATE-----
A path to a local file containing the certificate C:\\cert.cer
The public key (example shortened for brevity) -----BEGIN RSA PUBLIC KEY----- MIGfMA0GCSq......AQAB -----END RSA PUBLIC KEY-----
The MD5 Thumbprint (hex values can also be either space or colon separated) ecadbdda5a1529c58a1e9e09828d70e4
The SHA1 Thumbprint (hex values can also be either space or colon separated) 34a929226ae0819f2ec14b4a3d904f801cbb150d

If not specified, any certificate trusted by the machine is accepted.

Certificates are validated as trusted by the machine based on the System's trust store. The trust store used is the 'javax.net.ssl.trustStore' value specified for the system. If no value is specified for this property, Java's default trust store is used (for example, JAVA_HOME\lib\security\cacerts).

Use '*' to signify to accept all certificates. Note that this is not recommended due to security concerns.

Schema

This section provides a complete list of schema properties you can configure.

Property Description
Location Specifies the location of a directory containing schema files that define tables, views, and stored procedures. Depending on your service's requirements, this may be expressed as either an absolute path or a relative path.
BrowsableSchemas Optional setting that restricts the schemas reported to a subset of all available schemas. For example, BrowsableSchemas=SchemaA, SchemaB, SchemaC .
Tables Optional setting that restricts the tables reported to a subset of all available tables. For example, Tables=TableA, TableB, TableC .
Views Optional setting that restricts the views reported to a subset of the available tables. For example, Views=ViewA, ViewB, ViewC .

Location

Specifies the location of a directory containing schema files that define tables, views, and stored procedures. Depending on your service's requirements, this may be expressed as either an absolute path or a relative path.

Data Type

string

Default Value

%APPDATA%\Dynamics365 Data Provider\Schema

Remarks

The Location property is only needed if you want to either customize definitions (for example, change a column name, ignore a column, etc.) or extend the data model with new tables, views, or stored procedures.

If left unspecified, the default location is %APPDATA%\Dynamics365 Data Provider\Schema, where %APPDATA% is set to the user's configuration directory:

Platform %APPDATA%
Windows The value of the APPDATA environment variable
Mac ~/Library/Application Support
Linux ~/.config

BrowsableSchemas

Optional setting that restricts the schemas reported to a subset of all available schemas. For example, BrowsableSchemas=SchemaA,SchemaB,SchemaC .

Data Type

string

Default Value

""

Remarks

Listing all available database schemas can take extra time, thus degrading performance. Providing a list of schemas in the connection string saves time and improves performance.

Tables

Optional setting that restricts the tables reported to a subset of all available tables. For example, Tables=TableA,TableB,TableC .

Data Type

string

Default Value

""

Remarks

Listing all available tables from some databases can take extra time, thus degrading performance. Providing a list of tables in the connection string saves time and improves performance.

If there are lots of tables available and you already know which ones you want to work with, you can use this property to restrict your viewing to only those tables. To do this, specify the tables you want in a comma-separated list. Each table should be a valid SQL identifier with any special characters escaped using square brackets, double-quotes or backticks. For example, Tables=TableA,[TableB/WithSlash],WithCatalog.WithSchema.`TableC With Space`.

Note

If you are connecting to a data source with multiple schemas or catalogs, you must specify each table you want to view by its fully qualified name. This avoids ambiguity between tables that may exist in multiple catalogs or schemas.

Views

Optional setting that restricts the views reported to a subset of the available tables. For example, Views=ViewA,ViewB,ViewC .

Data Type

string

Default Value

""

Remarks

Listing all available views from some databases can take extra time, thus degrading performance. Providing a list of views in the connection string saves time and improves performance.

If there are lots of views available and you already know which ones you want to work with, you can use this property to restrict your viewing to only those views. To do this, specify the views you want in a comma-separated list. Each view should be a valid SQL identifier with any special characters escaped using square brackets, double-quotes or backticks. For example, Views=ViewA,[ViewB/WithSlash],WithCatalog.WithSchema.`ViewC With Space`.

Note

If you are connecting to a data source with multiple schemas or catalogs, you must specify each view you want to examine by its fully qualified name. This avoids ambiguity between views that may exist in multiple catalogs or schemas.

Miscellaneous

This section provides a complete list of miscellaneous properties you can configure.

Property Description
AllowDuplicateRecords Notes whether or not the driver will permit the adding of duplicate records during INSERT operations. To create the record (or update it if a duplicate is found), set this to true. To avoid adding duplicate records, set this to false.
ContinueOnError Specifies whether batch requests should continue after encountering an error. (OData 4.0 and higher only.).
CrossCompany Specifies whether data should be pulled only the user's default company, or for all companies. (FinOpsOnline, FinOpsOnPremise, or HumanResources only.).
CustomUrlParams A string of custom URL parameters to be included with the HTTP request, in the form field1=value1&field2=value2&field3=value3.
EnableAtomicBatchOperations This property indicates that all Create, Update, and Delete (CUD) requests in a batch are handled as a single action. The success of the entire batch depends on the outcome of all requests. If any single request fails, the whole batch fails and no changes are applied.
EntityTypes When using entity definitions define what type of entities to include during metadata discovery.
IncludeFormattedValues Specifies whether columns that hold formatted values should be exposed.
IncludeLookUpLogicalName Indicates if the referenced entity name for a LookUp field should be exposed.
IncludeNavigationKeys Specifies whether the column listing should include the primary keys of navigation properties. (JSON responses only).
IncludeNavigationProperties Specifies whether the column listing should include navigation properties.
MaxRows Specifies the maximum rows returned for queries without aggregation or GROUP BY.
MinimumColumnSize Specifies the minimum size of an Edm.String column, expressed as a number of characters. If the column size reported by Microsoft Dynamics 365 has a value lower than this value, the ADO.NET Provider for Microsoft Dynamics 365 overrides the service value with the one defined in the connection string.
Other Specifies additional hidden properties for specific use cases. These are not required for typical provider functionality. Use a semicolon-separated list to define multiple properties.
Pagesize Specifies the maximum number of results to return from Microsoft Dynamics 365, per page. This setting overrides the default page size set by the datasource, which is optimized for most use cases.
PseudoColumns Specifies the pseudocolumns to expose as table columns. Use the format 'TableName=ColumnName;TableName=ColumnName'. The default is an empty string, which disables this property.
Timeout Specifies the maximum time, in seconds, that the provider waits for a server response before throwing a timeout error. The default is 60 seconds. Set to 0 to disable the timeout.
UseClientSidePaging Specifies whether or not Microsoft Dynamics 365 should return data using client-side paging, if your source supports it. If set to false, Microsoft Dynamics 365 uses server-side paging.
UseDynamicStoredProcedures Indicates whether or not stored procedures should be listed dynamically.
UseEntityDefinitions Specifies that queries should use entity definition metadata endpoints, rather than the standard $metadata endpoint.
UserDefinedViews Specifies a filepath to a JSON configuration file defining custom views. The provider automatically detects and uses the views specified in this file.

AllowDuplicateRecords

Notes whether or not the driver will permit the adding of duplicate records during INSERT operations. To create the record (or update it if a duplicate is found), set this to true. To avoid adding duplicate records, set this to false.

Data Type

bool

Default Value

true

Remarks

This property only applies when Edition is CustomerService, FieldService, Marketing, ProjectOperations or Sales.

For further information, see https://learn.microsoft.com/en-us/power-apps/developer/data-platform/webapi/manage-duplicate-detection-create-update.

CrossCompany

Specifies whether data should be pulled only the user's default company, or for all companies. (FinOpsOnline, FinOpsOnPremise, or HumanResources only.).

Data Type

bool

Default Value

false

Remarks

This property only applies when Edition is set to FinOpsOnline, FinOpsOnPremise or HumanResources.

CustomUrlParams

A string of custom URL parameters to be included with the HTTP request, in the form field1=value1&field2=value2&field3=value3.

Data Type

string

Default Value

""

Remarks

This property enables you to specify custom query string parameters that are included with the HTTP request. The parameters must be encoded as a query string in the form field1=value1&field2=value2&field3=value3, where each value is URL encoded. URL encoding converts the characters in the string that can be transmitted over the internet as follows:

  • Non-ASCII characters are replaced with their equivalent in the form of a "%" followed by two hexadecimal digits.
  • Spaces are replaced with either a plus sign (+) or %20.

IncludeFormattedValues

Specifies whether columns that hold formatted values should be exposed.

Data Type

bool

Default Value

false

Remarks

If set to true, an extra column named columnname_display is added beside each column. If the column contains a formatted value, the new column exposes that formatted values. If the field does not have a formatted value, columname_display is null.

IncludeLookUpLogicalName

Indicates if the referenced entity name for a LookUp field should be exposed.

Data Type

bool

Default Value

false

Remarks

For each key column, an extra one is added to expose the LookUp logical name value. New columns will have "_lookuplogicalname" postfix.

IncludeNavigationProperties

Specifies whether the column listing should include navigation properties.

Data Type

bool

Default Value

false

Remarks

Navigation properties provide a way to navigate an association between two entity types. Every object can have a navigation property for every relationship in which it participates.

Navigation properties enable you to navigate and manage relationships in two ways:

  • Two-directional navigation returns either a reference object (if the relationship is either 1 or 0-or-1) or a collection (if the relationship is 1-to-many).
  • One-directional navigation enables you to define the navigation property on just one of the types that participates in the relationship, but not both.

When retrieving data, the navigation properties in a cell do not populate with information. Rather, they act to bind the content to an existing resource during inserts or updates. For example:

INSERT INTO accounts (_primarycontactid_value) VALUES ('123456')

To specify multiple values, use a comma-separated list. For instance:

INSERT INTO accounts (lead_customer_accounts) VALUES ('123,456')

MaxRows

Specifies the maximum rows returned for queries without aggregation or GROUP BY.

Data Type

int

Default Value

-1

Remarks

This property sets an upper limit on the number of rows the connector returns for queries that do not include aggregation or GROUP BY clauses. This limit ensures that queries do not return excessively large result sets by default.

When a query includes a LIMIT clause, the value specified in the query takes precedence over the MaxRows setting. If MaxRows is set to "-1", no row limit is enforced unless a LIMIT clause is explicitly included in the query.

This property is useful for optimizing performance and preventing excessive resource consumption when executing queries that could otherwise return very large datasets.

Other

Specifies additional hidden properties for specific use cases. These are not required for typical provider functionality. Use a semicolon-separated list to define multiple properties.

Data Type

string

Default Value

""

Remarks

This property allows advanced users to configure hidden properties for specialized scenarios. These settings are not required for normal use cases but can address unique requirements or provide additional functionality. Multiple properties can be defined in a semicolon-separated list.

Note

It is strongly recommended to set these properties only when advised by the support team to address specific scenarios or issues.

Specify multiple properties in a semicolon-separated list.

Integration and Formatting
Property Description
DefaultColumnSize Sets the default length of string fields when the data source does not provide column length in the metadata. The default value is 2000.
ConvertDateTimeToGMT=True Converts date-time values to GMT, instead of the local time of the machine. The default value is False (use local time).
RecordToFile=filename Records the underlying socket data transfer to the specified file.

Pagesize

Specifies the maximum number of results to return from Microsoft Dynamics 365, per page. This setting overrides the default page size set by the datasource, which is optimized for most use cases.

Data Type

int

Default Value

5000

Remarks

You may want to adjust the default pagesize to optimize results for a particular object or service endpoint you are querying. Be aware that increasing the page size may improve performance, but it could also result in higher memory consumption per page.

PseudoColumns

Specifies the pseudocolumns to expose as table columns. Use the format 'TableName=ColumnName;TableName=ColumnName'. The default is an empty string, which disables this property.

Data Type

string

Default Value

""

Remarks

This property allows you to define which pseudocolumns the connector exposes as table columns.

To specify individual pseudocolumns, use the following format: "Table1=Column1;Table1=Column2;Table2=Column3"

To include all pseudocolumns for all tables use: "*=*"

Timeout

Specifies the maximum time, in seconds, that the provider waits for a server response before throwing a timeout error. The default is 60 seconds. Set to 0 to disable the timeout.

Data Type

int

Default Value

60

Remarks

This property controls the maximum time, in seconds, that the connector waits for an operation to complete before canceling it. If the timeout period expires before the operation finishes, the connector cancels the operation and throws an exception.

The timeout applies to each individual communication with the server rather than the entire query or operation. For example, a query could continue running beyond 60 seconds if each paging call completes within the timeout limit.

Setting this property to 0 disables the timeout, allowing operations to run indefinitely until they succeed or fail due to other conditions such as server-side timeouts, network interruptions, or resource limits on the server. Use this property cautiously to avoid long-running operations that could degrade performance or result in unresponsive behavior.

UseClientSidePaging

Specifies whether or not Microsoft Dynamics 365 should return data using client-side paging, if your source supports it. If set to false, Microsoft Dynamics 365 uses server-side paging.

Data Type

bool

Default Value

false

Remarks

Pagination is the process of batching data so that the data retrieved is displayed in batches of a particular size. (To keep paging through the data, ask for "more". The data continues to display until all the retrieved data has been shown.)

In client-side paging, the client specifies how many records to return in each request, and the order of the requests. If UseClientSidePaging is set to true, the limit/offset is calculated at the client and the requests are sent concurrently, as multiple threads.

In server-side paging, the server returns only a subset of the data requested by the client. It also provides statistics on how large the full set of requested data is, and how much of the requested data set was not displayed. Server-side pagination is best for large data sets.

Note

Server-side paging requires traversing the data set both backward and forward. Not all data sources support that natively. To explicitly enable server-side paging with a data source that does not support it natively, you must configure your server to return a limited number of records per request, along with metadata about the total number of records. For details, see your data source's API documentation.

UseDynamicStoredProcedures

Indicates whether or not stored procedures should be listed dynamically.

Data Type

bool

Default Value

false

Remarks

When UseDynamicStoredProcedures is true, you can pull a stored procedure from the Actions and Functions in the OData service $metadata document and use the EXEC command to list it at runtime.

In all other ways, dynamic stored procedures are just like standard static stored procedures. Like standard stored procedures, they can also be listed using CALL or via edition-specific code.

UserDefinedViews

Specifies a filepath to a JSON configuration file defining custom views. The provider automatically detects and uses the views specified in this file.

Data Type

string

Default Value

""

Remarks

This property allows you to define and manage custom views through a JSON-formatted configuration file called UserDefinedViews.json. These views are automatically recognized by the connector and enable you to execute custom SQL queries as if they were standard database views. The JSON file defines each view as a root element with a child element called "query", which contains the SQL query for the view. For example:

{
    "MyView": {
        "query": "SELECT * FROM GoalHeadings WHERE MyColumn = 'value'"
    },
    "MyView2": {
        "query": "SELECT * FROM MyTable WHERE Id IN (1,2,3)"
    }

}

You can define multiple views in a single file and specify the filepath using this property. For example: UserDefinedViews=C:\Path\To\UserDefinedViews.json. When you use this property, only the specified views are seen by the connector.

Refer to User Defined Views for more information.