Dynamics Community Forum Thread Details

We encountered a 401 Unauthorized error while generating a SharePoint OAuth access token from Business Central AL code, even though the same credentials and request worked perfectly in Postman.
In Postman, we made a POST request to:

https://accounts.accesscontrol.windows.net/<tenetnt id>/tokens/OAuth/2

with the following parameters are dummy but we have used the correct ones:

Body : x-www-form-urlencoded

client_id: abcd1234-5678-90ef-ghij-klmnopqrstuv@12345678-aaaa-bbbb-cccc-1234567890ab
client_secret: XyZ6OFF+TUE0TVFCWk00fnFXNUVpQTJPc0NhLlU1TWdybTBYV2FJVA==
resource: 00000003-0000-0ff1-ce00-000000000000/mysharepointsite.sharepoint.com@12345678-aaaa-bbbb-cccc-1234567890ab
grant_type: client_credentials

Header :

Content-Type : - application/x-www-form-urlencoded

The access token was generated successfully, and we were even able to upload files to SharePoint directly from Postman.

Business central

However, when we tried to replicate the same process from Business Central AL code, using the same credentials and request parameters, the request failed with a 401 Unauthorized error. Below is the AL code we used (with dummy credentials):

procedure GetOauthToken()
var
Request: HttpRequestMessage;
Response: HttpResponseMessage;
Content: HttpContent;
ContentHeaders: HttpHeaders;
ContentText: Text;
GetTokenAuthorization: JsonObject;
Token: Text;
Client: HttpClient;
begin
ContentText := 'grant_type=client_credentials' +
'&client_id=abcd1234-5678-90ef-ghij-klmnopqrstuv@12345678-aaaa-bbbb-cccc-1234567890ab' +
'&client_secret=XyZ6OFF+TUE0TVFCWk00fnFXNUVpQTJPc0NhLlU1TWdybTBYV2FJVA==' +
'&resource=00000003-0000-0ff1-ce00-000000000000/mysharepointsite.sharepoint.com@12345678-aaaa-bbbb-cccc-1234567890ab';

Content.WriteFrom(ContentText);
Content.GetHeaders(ContentHeaders);
ContentHeaders.Add('Content-Type', 'application/x-www-form-urlencoded');

Request.Method := 'POST';
Request.SetRequestUri('https://accounts.accesscontrol.windows.net/12345678-aaaa-bbbb-cccc-1234567890ab/tokens/OAuth/2');
Request.Content(Content);

if Client.Send(Request, Response) then
if Response.IsSuccessStatusCode() then begin
Response.Content.ReadAs(ContentText);
GetTokenAuthorization.ReadFrom(ContentText);
Token := GetTokenAuthorization.GetValue('access_token').AsText();
end else
Error('Unauthorized! Response code: %1', Response.HttpStatusCode());
end;

Do we need to configure something additionally in Azure App Registration or within Microsoft Entra ID (formerly Azure AD) or the Business Central Microsoft Entra application for this to authenticate correctly?

If anyone from the community has encountered this scenario or resolved it before, your guidance would be really appreciated.

Categories:

Dynamics 365 Business Central

Microsoft Dynamics NAV

Community site session details

SharePoint OAuth Token 401 Unauthorized from Business Central (Postman Works)

Helpful resources

News and Announcements

Quick Links

Responsible AI policies

Abhilash Warrier – Community Spotlight

Congratulations to the September Top 10 Community Leaders!

Leaderboard > Small and medium business | Business Central, NAV, RMS

Featured topics

Product updates