Microsoft Dynamics · OAuth Scopes

Microsoft Dynamics OAuth Scopes

OAuth 2.0 derived

Microsoft Dynamics publishes 3 OAuth 2.0 scopes via the authorizationCode and clientCredentials flows. Scopes are the fine-grained permissions an application requests at authorization time to act against the Microsoft Dynamics API on a user’s behalf.

Tokens are issued from https://login.microsoftonline.com/common/oauth2/v2.0/token.

This index is generated from the provider’s OpenAPI security definitions (and, where available, its documented scope reference) and refreshes on every APIs.io network build. Browse every provider’s scopes at scopes.apis.io.

CRMERPMicrosoft Dynamics
Scopes: 3 Flows: authorizationCode, clientCredentials Method: derived

OAuth endpoints

Authorization URL
https://login.microsoftonline.com/common/oauth2/v2.0/authorize
Token URL
https://login.microsoftonline.com/common/oauth2/v2.0/token https://login.microsoftonline.com/{tenantId}/oauth2/v2.0/token
Flows
authorizationCodeclientCredentials

Scopes (3)

ScopeDescriptionFlows
https://api.businesscentral.dynamics.com/.default Access Business Central API authorizationCode
https://myorg.operations.dynamics.com/.default Access Finance & Operations API clientCredentials
https://org.crm.dynamics.com/.default Access Dataverse API authorizationCode

Source

OAuth Scopes

microsoft-dynamics-scopes.yml Raw ↑
generated: '2026-07-11'
method: derived
source: openapi/microsoft-dynamics-business-central-openapi.yml, openapi/microsoft-dynamics-dataverse-openapi.yml,
  openapi/microsoft-dynamics-finance-operations-openapi.yml
schemes:
- name: oauth2
  source: openapi/microsoft-dynamics-business-central-openapi.yml
  flows:
  - flow: authorizationCode
    authorizationUrl: https://login.microsoftonline.com/common/oauth2/v2.0/authorize
    tokenUrl: https://login.microsoftonline.com/common/oauth2/v2.0/token
  description: Microsoft Entra ID (Azure AD) OAuth 2.0 authentication.
- name: oauth2
  source: openapi/microsoft-dynamics-dataverse-openapi.yml
  flows:
  - flow: authorizationCode
    authorizationUrl: https://login.microsoftonline.com/common/oauth2/v2.0/authorize
    tokenUrl: https://login.microsoftonline.com/common/oauth2/v2.0/token
  description: Microsoft Entra ID (Azure AD) OAuth 2.0 authentication.
- name: oauth2
  source: openapi/microsoft-dynamics-finance-operations-openapi.yml
  flows:
  - flow: clientCredentials
    tokenUrl: https://login.microsoftonline.com/{tenantId}/oauth2/v2.0/token
  description: Microsoft Entra ID (Azure AD) OAuth 2.0 authentication.
scopes:
- scope: https://api.businesscentral.dynamics.com/.default
  description: Access Business Central API
  flows:
  - authorizationCode
  sources:
  - openapi/microsoft-dynamics-business-central-openapi.yml
- scope: https://myorg.operations.dynamics.com/.default
  description: Access Finance & Operations API
  flows:
  - clientCredentials
  sources:
  - openapi/microsoft-dynamics-finance-operations-openapi.yml
- scope: https://org.crm.dynamics.com/.default
  description: Access Dataverse API
  flows:
  - authorizationCode
  sources:
  - openapi/microsoft-dynamics-dataverse-openapi.yml