We're running Business Central on-premises (currently BC27, planning upgrades through BC30) in an environment with on-premises AD. We're migrating from OData to API v2.0 endpoints ahead of the OData deprecation.
Using Postman, we've successfully authenticated to the API v2.0 endpoints with Windows Authentication (NTLM), and we're getting some results back, but we have not migrated our Web Service Pages over to Pages 2.0 for the API 2.0 integration yet.
However, the documentation here doesn't list NTLM/Windows Auth as a confirmed supported method for API v2.0 specifically. The documentation says:
Q1) Can someone confirm whether Windows Authentication (NTLM) is officially supported for API v2.0 calls in an on-premises, AD-only deployment (BC27 through BC30), or if this is working by coincidence and shouldn't be relied on long-term?
Q2) If it's not officially supported, what's the recommended auth path for on-prem environments without Entra/Azure AD? Turning on Basic Auth / NavUserPassword requires moving our Web Client users out of LDAP as you can only have one auth type turned on at a time per service, as I understand it?
Thank you,
Frankie

Report
All responses (
Answers (