web
You’re offline. This is a read only version of the page.
close
Skip to main content

Notifications

Announcements

No record found.

News and Announcements icon
Community site session details

Community site session details

Session Id :
Dynamics 365 Community / Forums / Small and medium business | Business Central, N... / Implementing SSO for E...
Small and medium business | Business Central, N...
Suggested Answer

Implementing SSO for External Application Access in Dynamics 365 Business Central

(5) ShareShare
ReportReport
Posted on by Inkey Solutions 2,100

We are exploring options to implement Single Sign-On (SSO) for seamless authentication from Dynamics 365 Business Central to an external reporting portal. The objective is to allow users already logged into Business Central to access the external system without requiring them to log in again. 

To achieve this, we need clarification on the following: 

  1. Does Business Central support SAML-based SSO for authenticating users in external applications? 
  2. What is the recommended approach for securely passing authentication details from Business Central to an external system? 
  3. How can Business Central users be mapped to the corresponding users in the external application to ensure proper access control? 
  4. Are there any Microsoft guidelines or recommended configurations for setting up SSO between Business Central and a third-party system? 

Any insights or references to official documentation would be greatly appreciated. Thanks in advance! 

Categories:
Microsoft Dynamics NAV
Dynamics 365 Business Central
Dynamics 365 Business Central migration
I have the same question (0)
  • Suggested answer
    Ramesh Kumar Profile Picture
    Ramesh Kumar 7,527 Super User 2025 Season 2 on at
    Hi,
     
    Yes, Dynamics 365 Business Central supports integration with Azure Active Directory (Azure AD), which enables SSO using industry-standard protocols such as SAML. Think approach for securely passing authentication details is through OAuth 2.0 or OpenID Connect (OIDC) tokens, which are industry standards for secure token-based authentication. These tokens can be issued by Azure AD and used for secure access to external applications.
     
    1. Azure AD User Principal Name (UPN): The unique identifier for users in Azure AD, which is typically their email address.
    2. Azure AD Object ID: A unique identifier for each user in Azure AD
     
    Thanks
    Ramesh
     
    If this helped you, please check the box Does this answer your question?
  • Suggested answer
    Jainam M. Kothari Profile Picture
    Jainam M. Kothari 15,639 Super User 2025 Season 2 on at
    Hello,
     
    Implementing Single Sign-On (SSO) for seamless authentication from Dynamics 365 Business Central to an external reporting portal is a great way to enhance user experience and security. Here are the answers to your questions:

    1. Does Business Central support SAML-based SSO for authenticating users in external applications? Business Central does not natively support SAML-based SSO. Instead, it uses Microsoft Entra ID (formerly Azure Active Directory) for authentication, which supports OpenID Connect and OAuth protocols

    2. What is the recommended approach for securely passing authentication details from Business Central to an external system? The recommended approach is to use OAuth 2.0 for securely passing authentication details. OAuth allows Business Central to authenticate users and obtain access tokens that can be used to access external systems
    This ensures that authentication details are securely managed and passed between systems.

    3. How can Business Central users be mapped to the corresponding users in the external application to ensure proper access control? To map Business Central users to corresponding users in the external application, you can use Microsoft Entra ID to manage user identities. By associating Business Central user accounts with Microsoft Entra ID user accounts, you can ensure that users are properly authenticated and authorized across both systems. Additionally, you can use user groups and permission sets in Business Central to manage access control

    4. Are there any Microsoft guidelines or recommended configurations for setting up SSO between Business Central and a third-party system? Yes, Microsoft provides guidelines for setting up SSO using Microsoft Entra ID. The key steps include:
    •            Registering your external application in Microsoft Entra ID.
    •            Configuring Business Central to use Microsoft Entra authentication with OpenID Connect.
    •            Setting up OAuth 2.0 for secure token exchange
  • Gerardo Rentería García Profile Picture
    Gerardo Rentería Ga... 25,225 Most Valuable Professional on at
  • Suggested answer
    Khushbu Rajvi. Profile Picture
    Khushbu Rajvi. 20,439 Super User 2025 Season 2 on at

Under review

Thank you for your reply! To ensure a great experience for everyone, your content is awaiting approval by our Community Managers. Please check back later.

Helpful resources

Quick Links

Responsible AI policies

As AI tools become more common, we’re introducing a Responsible AI Use…

Neeraj Kumar – Community Spotlight

We are honored to recognize Neeraj Kumar as our Community Spotlight honoree for…

Congratulations to the November Top 10 Community Leaders!

These are the community rock stars!

Leaderboard > Small and medium business | Business Central, NAV, RMS

#1
OussamaSabbouh Profile Picture

OussamaSabbouh 3,151

#2
Jainam M. Kothari Profile Picture

Jainam M. Kothari 1,443 Super User 2025 Season 2

#3
YUN ZHU Profile Picture

YUN ZHU 1,092 Super User 2025 Season 2

Last 30 days Overall leaderboard

Featured topics

Product updates

Dynamics 365 release plans