Consume Retail Server APIs in external applications - testing in Postman error Microsoft_Dynamics_Commerce_Runtime_InvalidAudience

(0) Share

Report

Posted on by Harald Grannes

We are setting up integration to D365 Commerce and have followed the instructions / guidelines in https://learn.microsoft.com/en-us/dynamics365/commerce/dev-itpro/consume-retail-server-api.

The environment is of type MS managed acceptance test (generated on ice, West Europe).

Following the guideline, we have in Azure AD set up

an application for the Retail Server,
an application for the client,
added a client secret,
registered the app in the finance and operations app,
generated the Authorization token in Postman.

However, when testing the call to the Api from Postman, we run into the error :

"TypeName": "UserAuthenticationException",

"Exception": "{\r\n \"ErrorResourceId\": \"Microsoft_Dynamics_Commerce_Runtime_InvalidAudience\",\r\n \"LocalizedMessage\": \"The audience validation failed. Contact your system administrator to set up identity providers properly in retail headquarters.\\r\\n- If you are using Personnel ID and Password logon, make sure relying parties are correctly configured.\\r\\n- If you are using Azure AD logon, make sure both relying parties and server resource ids are correctly configured.\"\r\n}",

"CorrelationId": "7cc75ad7-1b84-44ee-8987-bfa4aff6880b"

Any idea on where to look to find a solution ?

Here are the screenshot of our setup.

Azure AD Retail Server App registration

Azure AD Scope

Azure AD client reg

I have the same question (0)

All responses (6)

Answers (2)

Harald Grannes 42 on at

Like (0)

Report

Postman call to get authorization token

Was this reply helpful? Yes No
Harald Grannes 42 on at

Like (0)

Report

Calling the API GetOrderHistory from Postman

Was this reply helpful? Yes No
Verified answer

huijij 19,811 on at

Like (1)

Report

Hi Harald,

You can use the Authorization tab to complete the relevant details for the correct data values which be determined by your API at the server side. Please check your configurations following the blog:

anithasantosh.wordpress.com/.../

Was this reply helpful? Yes No
Verified answer

Harald Grannes 42 on at

Like (1)

Report

Microsoft support solved the issue.

The problem was that we needed to add/modify an azure ad type Identity Provider as shown below and restart the retail server.

Was this reply helpful? Yes No
Shailee Shah 84 on at

Like (0)

Report

Hi All,

I am facing similar issue, even after restart it is not working for me. Any other suggestion ? TIA.

Was this reply helpful? Yes No
RS-30070451-0 on at

Like (0)

Report

Hi,

I was facing this issue earlier but after setting up Identity Providers, we are now facing this:

We are looking to consume APIs in Postman for a client (Retail client) using MS Dynamics 365 F&O for a 3rd Party Application and have followed the following documentation:

https://learn.microsoft.com/en-us/dynamics365/commerce/dev-itpro/consume-retail-server-api

However, we are facing the following error:

Microsoft_Dynamics_Commerce_Runtime_AuthorizationFailed\",\r\n \"LocalizedMessage\": \"The user is not authorized to perform this operation

We have tried multiple steps (from a lot of sources) and continue to face this error.

Would you know how to resolve this?

Was this reply helpful? Yes No