Hi Community,
I wanted to ask a question regarding the Application user/ Service Account setup in the FnO. I wanted to create a user which can be used in the Scribe Integration but I don't want to provide the System admin to that principle user due to security protocol. Can anyone suggest the best practices for the same and Microsoft document for reference?
Also, Wanted to check whether System Admin is minimum requirement to access the API from external system if not, what is minimum security roles that we can provide.
learn.microsoft.com/.../services-home-page
"As a better practice, you should provision a dedicated service account that has the correct permissions for the operations that must be performed."
We cannot answer you as long as we don't know which api is calling that third party application, and because it's a custom api it is your responsibility to create the appropriate security objects: Security roles and privileges - Power Platform | Microsoft Learn
What role we need to give to user for custom API and Odata Method which our third party application is calling
As Nuno says, you can define a role to access to specific entities, also to assign system user role is mandatory
You don't need an admin role.
Under review
Thank you for your reply! To ensure a great experience for everyone, your content is awaiting approval by our Community Managers. Please check back later.
As AI tools become more common, we’re introducing a Responsible AI Use…
We are honored to recognize Andrés Arias as our Community Spotlight honoree for…
These are the community rock stars!
Stay up to date on forum activity by subscribing.
CA Neeraj Kumar 1,239
André Arnaud de Cal... 767 Super User 2025 Season 2
Sohaib Cheema 672 User Group Leader
