Azure Synapse Analytics
An Azure analytics service that brings together data integration, enterprise data warehousing, and big data analytics. Previously known as Azure SQL Data Warehouse.
Azure Data Factory O-Data connector with service principal/key
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(288, 78%, 37%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EM%3C/text%3E%3C/svg%3E)
mapleloops
1
Reputation point
Hey,
we are currently onboarding a data source through o-data. On the azure tenant where the source (Business Central) is hosted, we created an app registration with a service principle including the secret/key creation. In the settings we gave the right read access to the APIs from business central and from a business central side, the APIs are also published.
We got confused what values needs to be entered in the o-data template in data factory (see picture below) since we did not get the connection to work and the documentation is also not very clear where to find the right detail.
- In the service URL we put in the o-data address generated by business central
- Authentication type is "Service principal with Key" as mentioned
- AAD resource we put in the application ID / client ID of the app registration
- Tenant we put in the tenant ID of the azure tenant where business central is running and the API was generated
- Service principal ID we put in again the application ID / client ID of the app registration
- Service principal key we put inthe value of the created secret
Can you please verify which information is needed for the separate boxes and where I find it? Especially the AAD resource and Service principle ID gives me some difficulties to understand where to find.
If entered as above, we get the error message
Error code: 23210
Details: Failed to create odata connection to RequestUrl. Failed to get metadata of odata service, please check if service url and credential is correct and your application has permission to the resource. Expected status code: 200, actual status code: BadRequest, response is : {"error": {"code": "RequestDataInvalid","message": "Request data is invalid."}}.
----
If I add the object ID in the AAD resource and the Secret ID as Serpice principal ID I get the following message:
Failed to create odata connection to RequestUrl. Failed to get access token by using service principal. Error: unauthorized_client, Error Message: AADSTS700016: Application with identifier 'SECRET ID' was not found in the directory 'TENANT'. This can happen if the application has not been installed by the administrator of the tenant or consented to by any user in the tenant. You may have sent your authentication request to the wrong tenant.
Many thanks for your support here
Azure Synapse Analytics
Azure Data Factory
Azure Data Factory
An Azure service for ingesting, preparing, and transforming data at scale.
{count} votes
-
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(134.4, 9%, 23%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EKM%3C/text%3E%3C/svg%3E)
KranthiPakala-MSFT 46,737 Reputation points Microsoft Employee Moderator2022-05-24T21:39:29.523+00:00 Hello @mapleloops ,
Thanks for the question and using MS Q&A platform.
For AAD resource you will have to provide AAD resource URL you are requesting for authorization, for example,
https://management.core.windows.net.
Hope this helps. Do let us know how it goes.
-
KranthiPakala-MSFT 46,737 Reputation points Microsoft Employee Moderator
2022-05-25T23:48:46.88+00:00 Hello @mapleloops ,
Just checking in to see if the info was helpful.And, if you have any further query do let us know.
-
mapleloops 1 Reputation point
2022-05-27T09:36:32.497+00:00 Hi @KranthiPakala-MSFT ,
thanks for your input. It helped to understand the fields. However we are still not able to connect.
We still get the following message:
**Error code** 23210 **Details** Failed to create odata connection to RequestUrl. Failed to get metadata of odata service, please check if service url and credential is correct and your application has permission to the resource. Expected status code: 200, actual status code: Unauthorized, response is : { "error": { "code": "Authentication_InvalidCredentials", "message": "The server has rejected the client credentials." } }.Moreover, we tested authentication to the service in postman and we can authenticate. When we try to reach the o-data service URL copied from Business Central
https://api.businesscentral.dynamics.com/v2.0/[TENANT ID]/[SANDBOX NAME]/ODataV4/Company[Company Name]/$metadata{ "error": { "code": "Authentication_InvalidCredentials", "message": "The server has rejected the client credentials." } }On the application (Business Central side) we create an app registration with a service principle which has read and write API access to business central.
-
KranthiPakala-MSFT 46,737 Reputation points Microsoft Employee Moderator
2022-06-07T19:56:31.247+00:00 Hello @mapleloops ,
Just wanted to check to check if you are still blocked. If yes, then for deeper investigation and immediate assistance, If you have a support plan you may file a support ticket, else let me know so that we can check on alternate options to work closely on this issue.
Thank you
Sign in to comment
Sign in to answer