Hello Everyone,
If you are using D365 WMS mobile app for your warehouse operations. Now its time to make changes to the authentication from Service based to User based if you have not already moved.
Its a mandatory change from Microsoft, if not warehouse users will not be able to use the warehouse mobile app for their day to day operations and its effective from 15th July 2024.
To make sure, users continue to work on WMS app, need to transit from service-based to user-based authentication. In this article, will provide the steps to migrate from service-based to user-based authentication.
It requires two level of configuration as follows.
1. Register an Azure Application
2. Create new connection in WMS app
Register an application for user-based authentication
Kindly follow the steps in the respective order.
1. Login to Azure
portal, https://portal.azure.com
2. In the Azure portal, on
the left navigation pane, select Microsoft
Entra ID.
3.
In the Manage list, select App registrations.
On the toolbar, select New registration to open the Register an application wizard.
4. Enter a name for the application, select the Accounts in this organizational directory only option, and then select Register.
6. Your new app registration is opened. Make a note of the Application (client) ID, Tenant ID values, because you'll need it later.
7. In the Manage list, select Authentication.
8. On the Authentication page for the new app, set the Enable the mobile and desktop flows option to Yes to enable the device code flow for your application. Then select Save.
Select Add a platform.
In the Configure platform dialog box, select Mobile and desktop applications.
In the Configure Desktop + devices dialog box, set the Custom redirect URIs field to the following value:
ms-appx-web://microsoft.aad.brokerplugin/S-1-15-2-3857744515-191373067-2574334635-916324744-1634607484-364543842-2321633333
Note: It’s important to know, sometimes the above-mentioned URI might not work, in this case you will get an error at the time of sign in under WMS app. The URI mentioned in that error message should be added as another URI.
You return to the Authentication page, which now shows your new platform configuration. Select Add a platform again.
14In
the Manage list, select API permissions.
15Select Add a permission.
16In the Request API permissions dialog box, on the Microsoft APIs tab, select the Dynamics ERP tile and then the Delegated permissions tile. Under CustomService, select the CustomService.FullAccess checkbox. Finally, select Add permissions to save your changes.
17On the left navigation pane, select Overview. Then click the link under Managed application in local directory.
18This will take you to Enterprise application. Confirm that the Application ID value for the app that's found matches the client ID that you copied earlier.
19In
the Manage list, select Properties.
20Set the Assignment required? option to Yes and the Visible to users? option to No. Then select Save on the toolbar.
21In
the Manage list, select Users and groups.
22On the toolbar, select Add user/group.
On the Add Assignment page, select the link under the Users heading.
24In
the Users dialog box, select each
user that you'll use to authenticate devices with Supply Chain Management.
25Click
Select to apply your settings
and close the dialog box. Then select Assign to
apply your settings and close the Add Assignment
page.
26In
the Security list, select Permissions.
27Select Grant admin consent for <your tenant>, and grant admin consent on behalf of your users. If you lack the necessary permissions, return to the Manage list, open Properties, and set the Assignment required? option to False. Each user can then provide consent individually.
WWith this registration of the azure application is completed.
Create new connection in WMS app
Install the application on Desktop/Mobile device as you
require. The easiest way to install the app on a single device is to install it
from an app store, which always provides the latest generally available
version. Microsoft Intune can also fetch apps from the app stores. Use one of
the following links to install the app from an app store:
- Windows (UWP): Warehouse Management
on Microsoft Store
- Android: Warehouse Management
on Google Play Store
- iOS: Warehouse Management
on Apple App Store
There are
multiple ways to create connection, we are explaining the option input
manually.
1. Open the app you have installed,
select Set up connection.
2. Select input manually.
3.
You have the
following fields to fill in –
o
Connection
name – Name of the connection (can be
anything, specific to device).
o
Environment
URL – Base URL of environment for
eg., https://<environmentname>.operations.dynamics.com
o
Company – Legal entity for eg., USMF.
o
Authentication
method – Username and Password.
o
Domain name – microsoft.com (Keep it, as it is)
o
Use Broker – No
o
Cloud – Manual
o
Microsoft
Entra ID tenant – https://login.microsoftonline.com/<tenant
Id>
o
Microsoft
Entra ID Client ID – <Client
Id>
Hit Save after filling above mentioned information.
5. Tenant ID and Client ID can be referred in azure portal, under registered application. Please find the screenshot for reference.
o Application ID = Client ID
o Directory ID = Tenant ID
Now click on Connect.
7. Fill only username (this
username should belong to one of the users you have added during step 27 while
registering app).
8. Request you to login with the
password.
9. Once you’re logged in successfully you will land to following page.
10 Fill your Worker Id and Password to
login.
In step 13 I
had mentioned a note, you may get an error while logging in with your username
(step 7 of creating connection).
Read the error
message and copy the highlighted URI and add it on the Authentication page of your
registered app. Then try again.
I hope now you successfully logged into WMA.
Thanks,
Happy Learning 😊
No comments:
Post a Comment