Finance | Project Operations, Human Resources, ...

How to add security while exposing ServicesGroup to third party.

(2) Share

Report

Posted on by Arabic Translation ...

Hello Experts,

I have created a new ServiceGroup that includes 5 services under it. I now need to provide authorization details, such as the client ID and client secret, so that third party application users can access my API to insert customers from their customer portal and other data in my application D365 F&o.

Currently, all my APIs are exposed, even though users may not know the names of the other services. However, this still leaves my data vulnerable. Can someone please guide me on how to restrict access so that users can only use the specific Service Group and the 5 APIs within it?

Thank you!

Categories:

Dynamics 365 Finance

Microsoft Dynamics AX

I have the same question (0)

All responses (4)

Answers (0)

André Arnaud de Cal... 297,200 Super User 2025 Season 2 on at

Like (0)

Report

How to add security while exposing ServicesGroup to third party.

Hi Arabic Translation,

In this case, I do assume the integration is done with a service account. As you mentioned that the users don't have direct access to F&O, they will not be able to call these services outside of your app unless they have credentials of the service account.

Was this reply helpful? Yes No
Arabic Translation ... 62 on at

Like (0)

Report

How to add security while exposing ServicesGroup to third party.

@André Arnaud de Calavon I have created 5 services grouped under a single service group in D365 F&O. My company uses a Customer Portal for retail purposes, and the requirement is that whenever a user creates a new customer in the customer portal, the portal should call my API to send the customer data to D365 F&O. The users of the Customer Portal are not D365 F&O users.

Was this reply helpful? Yes No
André Arnaud de Cal... 297,200 Super User 2025 Season 2 on at

Like (0)

Report

How to add security while exposing ServicesGroup to third party.

Hi Arabic Translation.

How are the services used? Are the users using another application for data entry?

Note that services are not accessible unless access is provided to a user via a F&O security role. If these 5 services are grouped in one security role, you can assign this to the integration user or individual users. The service permissions can be maintained on the Service operations node on security privileges.

For other APIs you can develop or configure different security roles.

Was this reply helpful? Yes No
Suggested answer

NikolajSorensen 1,780 on at

Like (0)

Report

How to add security while exposing ServicesGroup to third party.

You should create a new privilege/security role which grant access only to the data entities/service operations/tables that are used to facilitate the communication and workload.

This role should then be assigned to the account in D365FO used.

BR

Nikolaj

Was this reply helpful? Yes No

Community site session details

How to add security while exposing ServicesGroup to third party.

Helpful resources

News and Announcements

Quick Links

Responsible AI policies

Mansi Soni – Community Spotlight

Congratulations to the July Top 10 Community Leaders!

Leaderboard > Finance | Project Operations, Human Resources, AX, GP, SL

Featured topics

Product updates

Community site session details

How to add security while exposing ServicesGroup to third party.

Helpful resources

News and Announcements

Quick Links

Responsible AI policies

Mansi Soni – Community Spotlight

Congratulations to the July Top 10 Community Leaders!

Subscribe to this forum!

Select categories

Leaderboard > Finance | Project Operations, Human Resources, AX, GP, SL

Featured topics

Product updates