Complete the following setup tasks before integrating Mesh with Microsoft Dynamics 365 Business Central.

Azure Setup 

1. Access your Azure Portal.

2. Search for App registrations and then choose the related link.

3. Choose New registration to create a new app registration.

4. Enter the NameB (e.g., MeshConnect), select the account type, then choose Register. 

Note: Make sure it was created successfully.

5. Search and select Authentication.

6. Choose Add a platform.

7. Choose Web.

8. Enter the redirect URl of the application, and then choose Configure.

https://businesscentral.dynamics.com/OAuthLanding.htm 

Note: Make sure it was created successfully.

9. Choose API permissions.

10. Choose Add a permission.

11. Find Dynamics 365 Business Central and click it.

12. You can choose the required permissions according to your situation (e.g., Delegated permissions) and then click Add permissions. 

13. Select the permissions (e.g., User_impersonation and Financials.ReadWrite.All), and then choose Add permissions.

14. Choose Add a permission again.

15. Click Dynamics 365 Business Central.

16. Choose Application permissions this time.

17. Select the permissions you need, then choose Add permissions.

18. Choose Grant admin consent for MeshConnect.

19. Choose Yes.

Note: Make sure that it was granted successfully.

20. Choose Certificates & secrets.

21. Choose New Client secret.

22. Enter Description and select Expires, then choose Add.

Note: Make sure that it was added successfully.

23. Before moving to the next steps, make sure you note down the following: 

• Application (client) ID
• Certificates & secrets value
• Directory (tenant) ID

Microsoft Dynamics 365 Business Central (BC) Setup 

1. Log in to the BC environment that you need to connect to, and enter AAD (Azure Active Directory) in the ‘Tell me what you want to do’ search bar, then choose the related link.

Note: Since Azure Active Directory (AAD) Applications has recently been renamed to Microsoft Entra Applications, try searching for Microsoft Entra Applications if AAD does not appear.

2. Choose New.

Note: The Mesh app may appear as already enabled. However, this step defines the app, and you will allow it in Step 4.

3. Enter a Client ID (where from? Step 23 above?) and a Description (e.g., Mesh App).

Note: The Client ID must have a value in the Microsoft Entra Application (formerly known as Azure Active Directory). 

4. Assign permissions to the AAD  (Azure Active Directory) application using the Principle of Least Privilege (PoLP) - i.e., to assign the minimum access permissions necessary to perform the required tasks.

Notes:

• The application needs to be registered in Business Central.
• Ensure that the applications are not shared across scenarios.
• You CANNOT assign the ‘SUPER’ permission set to an application. Instead, assign a more limited permission set that is specifically designed for the intended purpose.

5. Go back to the Azure Active Directory Applications page, and confirm that the State is Enabled.

6. Navigate here to learn how to integrating Mesh and Business Central.