Sign in Error on POS because of Azure AD account is not mapped in D365 Commerce (Retail) | CloudFronts

Sign in Error on POS because of Azure AD account is not mapped in D365 Commerce (Retail)

Posted On February 25, 2021 by Hitesh Jingare Posted in  Tagged in

Many customers use Azure Active Directory (Azure AD) to manage user credentials for those services. In those cases, the customers might want to use the same Azure AD account across applications.

Before a store worker can use an Azure AD account to sign in to the POS application, the Azure AD account must be associated with that worker.

At times you will get an error while sign in POS for employees. Even when you add Associate Existing identity for the worker in HQ.

Sign in 
Store / Register 
Sonee-l / 001-2 
Staff 
Sadiq Mohamed 
Sign in error 
Could not resolve identiw. The Azure AD 
account is not mapped to an employee in Retail 
headquarters. 
v Show more 
Passworc. 
4 
5 
2 
6 
3 
abc 
0

Follow the below steps:

Go to Azure portal, Click on Azure active directory.

Microsoft Azure 
p Search resources, services, and docs (G*/) 
Azure services 
Create a 
resource 
Azure Active 
Directory 
Virtual 
machines 
Subscriptions 
Resource groups 
Resource 
groups 
App 
registrations 
Data factories 
Azure SQL 
SQL databases 
Last Viewed 
6 hours ago 
7 hours ago 
a day ago 
3 weeks ago 
3 weeks ago 
Dashboard 
More services 
Recent resources 
Name 
dev51522c5add-l 
dev I cOa566a46-I 
Azure subscription 1 
(O) shcloudhosted 
Shdb (shdbvm/Shdb) 
Navigate 
Subscriptions 
Tools 
Virtual machine 
Virtual machine 
Subscription 
Resource group 
SQL database 
All resources

Go to user and select the user

re 
Overview 
Ive Directory 
Getting started 
Preview hub 
Diagnose and solve problems 
Manage 
Users 
Groups 
External Identities 
Roles and administrators 
Administrative units 
Enterprise applications 
Devices 
App registrations 
Identity Governance 
Application proxy 
Licenses 
Azure AD Connect 
Q) Switch tenant 
o 
Azure Active Direct 
sonee.com.n 
p Search your tenant 
Tenant infor 
Your role 
Dynamics 365 adminis 
other roles 
More info 
License 
Azure AD for Office 3C 
Tenant ID 
715f1 
primary domain 
sonee.ccm.mv
Xusheng Wang 
Azure AD 
External sub identifier

Copy the External Sub Identifier.

Inside AX HQ, go to Commerce shared parameter

Inside Identity Provider, Add azure AD link.

Inside relying parties Add user External sub identifier for the same.

Finance and 
Save Options 
Commerce shared parameters 
p Cornmerce shared 
General 
Labels 
Number sequences 
Security 
Bing Maps 
All catalogs 
Identity providers 
Entity validation template 
Configuration parameters 
Set up Identity Providers to be used by Retail Server 
IDENTITY PROVIDERS 
+ Add Remove 
https://commercedynamics.com/auth 
https://commercedynamics.com/authcc 
httpsWd365•devdevret.sandbox.ax.dynamics.com/auth 
h t ndb0X -te n db0x.0 peration s.dyn a m ics.co m/a Lith 
https://shcloudhosted24176b63b671 b8f54devretcloudax.dynamics.com/auth 
https://sts.windovwnet/715f1c54-6d25-4022-af48-fffdb9badSba,' 
Name 
Commerce Identity Provider 
Commerce Identity Provider 
Commerce Identity Provider 
scu4rmIajw6597 59660 
Commerce Identity Provider 
Azure AD 
Name 
Type 
Open ID Connect 
Open ID Connect 
Open ID Connect 
Open ID Connect 
Open ID Connect 
Azure Active Directory 
RELYING PARTIES 
+ Add Remove 
Clientld 
d034d339-6243-453a-a4a1-b7bc8d97c01c 
d5527362-3bc8-4e63-b5b3-606dc 14747e9 
d6b5aObd-bf3f-4a8c-b370-619fb3dOe1cc 
SERVER RESOURCE IDS 
+ Add Remove 
Public 
Public 
Public 
r Type 
Worker 
Worker

Inside https://commerce.dynamics.com/auth provide below relying parties.

Finance and Operations 
*Save Options 
Commerce shared parameters 
p Commerce shared 
General 
Number sequences 
Secu rity 
Bing Maps 
All catalogs 
Identity Providers 
Entity validation template 
Configuration parameters 
Set up Identity Providers to be used by Retail Server 
IDENTITY PROVIDERS 
+ Add 13 Remove 
httpsflcommerce.dynamicscom/auth 
https://commerce.dynamics.com/authcc 
https://d365-devdevret.sandbox.ax.dynamics.com/auth 
https://sandbox-testret_sandboxoperations.dynamics.com/auth 
https://shcIoudhosted241760630671b8f54devret cloudax. dynamics com/auth 
https://sts.windows.net/57206206-ec82-4579-9724.Oa09ged1b99f/ 
windows net/715f Ic54-6d 25-4022- f48-fffdb9badSba/ 
Commerce Identity Provider 
Commerce Identity Provider 
Commerce Identity Provider 
scu4rmlajw659759660 
Commerce Identity Provider 
Dynamics Commerce 
Azure AD 
Type 
Open ID Connect 
Open ID Connect 
Open ID Connect 
Open ID Connect 
Open ID Connect 
Azure Active Directory 
Azure Active Directory 
RELYING PARTIES 
Add Remove 
C I i entld 
Cloud pos 
Modern POS 
Public 
Public 
Customer 
Customer

Inside https://commerce.dynamics.com/authcc provide below relying parties.

Finance Operations 
G Save Options 
Commerce shared parameters 
p Commerce shared 
General 
Number sequences 
Secu rity 
Bing Maps 
All catalogs 
Identity Providers 
Entity validation template 
Configuration parameters 
Set up Identity Providers to be used by Retail Server 
IDENTITY PROVIDERS 
Add Remove 
https://commere-dynamics.com/auth 
https://commerce.dynamics.com/authcc 
https://sandbox-testret.sandbox.operations.dynamics.com/auth 
https://shcloudhosted24176b63ö671bgf54devret.cIoudax.dynamics.com/auth 
https://Sts Windows .net/57206206-ec82-4579-9724 -O a 098ed I b99f/ 
https://sts.windows.neV715f1c54-6d254022-af48-fffdb9bad5ba/ 
Commerce Identity Provider 
Commerce Identity Provider 
Commerce Identity Provider 
scu4rmlajw659759660 
Commerce Identity Provider 
Dynamics Commerce 
Azure AD 
Type 
Open ID Connect 
Open ID Connect 
Open ID Connect 
Open ID Connect 
Open ID Connect 
Azure Active Directory 
Azure Active Directory 
RELYING PARTIES 
Add Remove 
Clientld 
Cloud pos 
Modern pos 
SERVER RESOURCE IDS 
Add Remove 
Type 
Public 
Public 
User Type 
v Worker 
Worker

Run 9999 job from Channel database. After full Sync Activate POS again. you will able to sign in successfully.

hope this helps!


Share Story :