تحرير

AD FS Microsoft 365 compatibility

  • مقالة

Important

This feature is only fully supported starting with application update 10.0.8, Platform update 32, and LocalAgent 2.2.0. For details, see Partial support.

This article explains how to use the same instance of Active Directory Federation Services (AD FS) for a Dynamics 365 Finance + Operations (on-premises) environment and for Microsoft 365.

Existing deployments

  1. Download the new local agent version from Microsoft Dynamics Lifecycle Services (LCS). It should be version 2.2.0 or later.

  2. Update your agent configuration in LCS by setting the deployment option to Enable AD FS Microsoft 365 Compatibility.

  3. Download the new version of the local agent configuration file.

  4. Run the following command to uninstall the old local agent version from your cluster.

    .\LocalAgentCLI.exe Cleanup '<path of localagent-config.json>'

  5. Run the following command to install the new local agent version.

    .\LocalAgentCLI.exe Install '<path of localagent-config.json>'

  6. Perform any servicing operation with Platform update 28 or later to make the new configuration available.

  7. After servicing is completed, run the following script.

    .\Reset-DatabaseUsers.ps1 -DatabaseServer '<FQDN of the SQL server>' -DatabaseName '<AX database name>'

    Important

    If you skip this step, the primary admin user won't be able to sign in.

  8. Use Service Fabric Explorer to Restart applications (such as AOS).

  9. Verify that you are able to sign in to the product with the system administrator user that was specified during deployment.

  10. Download the newest version of the infrastructure scripts from the LCS Shared asset library.

  11. Copy the Reset-SID.ps1 script from the downloaded infrastructure scripts folder into one of your AOS machines.

  12. Execute the Reset-Sid.ps1 script.

    Import-Module ".\D365FO-OP" -Force
.\Reset-SID.ps1 -AxsfCodePath 'C:\ProgramData\SF\AOS_13\Fabric\work\Applications\AXSFType_App184\AXSF.Code.1.0.20190902'

New deployments

  1. Follow the instructions for installing the local agent in the "Configure a connector and install an on-premises local agent" section of Set up and deploy on-premises environments. However, before you actually install the local agent, complete step 2 of this procedure.
  2. Modify the local agent configuration file, and set the office365AdfsCompatibility value to True.
  3. Continue to follow the instructions in the "Configure a connector and install an on-premises local agent" section of Set up and deploy on-premises environments, and deploy a base version that runs Platform update 28 or later. If there is no base version that runs Platform update 28 or later, deploy the latest base version that is available. Then service it so that Platform update 28 is deployed on top.

Partial support

For partial support, it is necessary to have Local Agent 2.2.0 or later installed and to update the service with Platform update 28 or later.

With partial support, authentication against the Financial Reporting service is not supported.