Share
Report
16Struggling a bit with this, hoping someone might have an insight. I've no doubt overlooked something simple...
We have Business Central 25.2 running on premise, and we use Entra ID for user authentication, all works great.
We want to open up OData API for access from Excel/Power Query and Power BI. I've configured as per https://learn.microsoft.com/en-us/dynamics365/business-central/dev-itpro/administration/authenticating-users-with-azure-ad-openid-connect?tabs=singletenant%2Cadmintool for single tenant and as far as I can tell all the settings are correct but calls to the OData endpoint are still returning basic authentication as an option, and subsequently we can't authenticate.
Curl returns the following snippet:
< WWW-Authenticate: Basic realm=""
WWW-Authenticate: Basic realm=""
< WWW-Authenticate: Bearer authorization_uri="api://cxxxxxxx-yyyy-4c2c-aeea-bbbbbbbbbbbb/"
WWW-Authenticate: Bearer authorization_uri="api://cxxxxxxx-yyyy-4c2c-aeea-bbbbbbbbbbbb/"
WWW-Authenticate: Basic realm=""
< WWW-Authenticate: Bearer authorization_uri="api://cxxxxxxx-yyyy-4c2c-aeea-bbbbbbbbbbbb/"
WWW-Authenticate: Bearer authorization_uri="api://cxxxxxxx-yyyy-4c2c-aeea-bbbbbbbbbbbb/"
Obviously not what I'm expecting.
WSFederationLoginEndpoint is set to "https://login.microsoftonline.com/<tenant-id>/wsfed?wa=wsignin1.0%26wtrealm=api://cxxxxxxx-yyyy-4c2c-aeea-bbbbbbbbbbbb%26wreply=https://fqdn/instance/signin"
(redacted)
also had the realm as the URL, and also had WSFederationLoginEndpoint set to "https://login.microsoftonline.com/<tenant-id>/wsfed"
AppIdUri = "api://cxxxxxxx-yyyy-4c2c-aeea-bbbbbbbbbbbb"
NTLM options are off, OData is all on, v4 on, ssl on. Can't see anything I've missed.
Any ideas? TIA
Categories:
I have the same question (0)
All responses (
Answers (
