Create your Project Operations app in Azure AD

Creating your app in Azure AD

👍

Prerequisite:

Make sure you have set up an Azure AD tenant before proceeding. If you need to set up an Azure AD tenant, please refer to this Guide to Set up a tenant.

Part 1: Create a new app registration for Project Operations in Azure AD

1. Sign in to the Azure Portal.

📘

Please Note:

You must have an Azure account with permissions to manage applications in Azure Active Directory (Azure AD), such as one of the following Azure AD roles:

• Application administrator
• Application developer
• Cloud application administrator

2. If you have access to multiple tenants, switch to the tenant in which you want to register the application (using the Directories + subscriptions filter on the top menu).

3. Navigate to Azure Active Directory.

4. Under Manage > Properties and take note of your Tenant ID.

5. In the Overview page, click on + Add, select App registration.

6. Enter a name for the application (e.g., Mosaic Project Operations Integration).

7. Under Supported account types, select Accounts in this organizational directory only.

8. Make sure to skip the Redirect URI (optional) section.

9. Select Register.

10. After the registration is complete, take note of the Application (client) ID in the Application Overview Page.

11. Navigate to Manage > Authentication and turn on Allow public client flows

12. Navigate to Manage > Certificates & secrets, and select New client secret. Enter a Description and Expiration policy and select Add. Take note of your Client Secret Value

13. Provide the Tenant ID (from Step #4), Client ID (from Step #10) and Client Secret Value (from Step #12) to Mosaic.

Part 2: Grant the registered application Delegated permissions to the Dynamics CRM API

1. Navigate to Manage > API permissions > Add a permission.

2. Select Dynamics CRM.

3. Click on Delegated permissions and select user_impersonation