web
You’re offline. This is a read only version of the page.
close
Skip to main content

Notifications

Announcements

No record found.

News and Announcements icon
Community site session details

Community site session details

Session Id :
Dynamics 365 Community / Forums / Small and medium business | Business Central, N... / Business Central on pr...
Small and medium business | Business Central, N...
Answered

Business Central on premise with Azure Active Directory

(0) ShareShare
ReportReport
Posted on by johnnyb123 70

Hi,

I have two servers on premise (one is for business central server and web server and the other one for SQL server). Trying to connect it with my Azure Active Directory and users with office 365 accounts (so thats why i would like to use AccessControlService credential type). The question is, are those on premises servers need to be added to domain to connect each other and azure? and is there any compulsion to use business central service account working on domain account or it could be just a local account? 

thanks and regards,

Johhny

I have the same question (0)
  • Verified answer
    srttel Profile Picture
    srttel on at

    Hi Johnnyb123m

    in this case you are just using the Office accounts as identity provider, so that users can use that accound as e.g. SSO.

    For more details you can review the wlakthrough here.

    docs.microsoft.com/.../authenticating-users-with-azure-active-directory

  • johnnyb123 Profile Picture
    johnnyb123 70 on at

    and that's all? I mean those on premise servers are stading out of azure (locally). how about network configuration and connecting with azure ad and other one server with sql? i dont need to install ad ds locally in this case?

    regards,

  • Verified answer
    Marco Mels Profile Picture
    Marco Mels on at

    Hi,

    Azure AD authentication is being used to authenticate the Dynamics 365 Business Central users / Dynamics NAV users so that they can get in to the ERP application. We allow usernames or windows user accounts to be linked to the Office 365 mail address (AAD account / Office 365 account).

    Another discussion seperate from this.

    We do indeed recommend from security perspective to use a domain user to account as the service account:

    docs.microsoft.com/.../provision-server-account

    NETWORK Service Account is also possible but not recommended or a local computer account (MACHINENAME\username). That account must have logon as a service assigned.

    It is indeed as simple as that.

    Thanks.

Under review

Thank you for your reply! To ensure a great experience for everyone, your content is awaiting approval by our Community Managers. Please check back later.

Helpful resources

Quick Links

Responsible AI policies

As AI tools become more common, we’re introducing a Responsible AI Use…

Neeraj Kumar – Community Spotlight

We are honored to recognize Neeraj Kumar as our Community Spotlight honoree for…

Congratulations to the November Top 10 Community Leaders!

These are the community rock stars!

Leaderboard > Small and medium business | Business Central, NAV, RMS

#1
OussamaSabbouh Profile Picture

OussamaSabbouh 2,468

#2
YUN ZHU Profile Picture

YUN ZHU 923 Super User 2025 Season 2

#3
Sumit Singh Profile Picture

Sumit Singh 607

Last 30 days Overall leaderboard

Featured topics

Product updates

Dynamics 365 release plans