Getting started with API
Access to API
Note
For on-premise installations please talk with your Microsoft Partner, how to get the access. The documentation is written for Cloud environments.
Steps to Register Azure AD App for Pimics API Access
- Sign in to Azure Portal
- Go to https://portal.azure.com
- Create a New App Registration
- Navigate to Azure Active Directory > App registrations
- Click New registration
- Fill in:
- Name: e.g., Pimics API Access
- Supported account types: Choose based on your organization setup
- Redirect URI: Optional for client credentials flow
- Click Register
- See details in Microsoft Docs – Register an application
- Note Down App Details
- After registration, copy:
- Application (client) ID
- Directory (tenant) ID
- After registration, copy:
- Add API Permissions
- Go to API permissions > Add a permission
- Choose:
- APIs my organization uses
- Search for Dynamics 365 Business Central
- Select Delegated permissions or Application permissions
- Add permission:
API.ReadWrite.Allor similar - Click Grant admin consent
- See details in Microsoft Docs – Permissions and consent
- Create a Client Secret
- Go to Certificates & secrets
- Click New client secret
- Add description and expiry
- Save the Value securely
- See details in Microsoft Docs – Add app roles and secrets
Steps to set permissions in Business Central
- Register Application in Business Central
- Choose the Search icon (or use Alt + Q), enter Azure Active Directory Applications, then choose the related link.
- Click New to register the app.
- Fill in:
- Client ID: from Azure AD
- Description: e.g., "Pimics API Access"
- State: Enabled
- Assign "PIMX USER" Permission Set
- In the same Azure AD Application card:
- Go to User Permissions
- Add permission set: PIMX USER
- This permission set must exist in your Business Central environment. If not, contact your system administrator or Pimics support to ensure it is deployed.
- In the same Azure AD Application card:
Test Connection
- Generate Access Token
Use the following OAuth2 token endpoint:
https://login.microsoftonline.com/{tenantId}/oauth2/v2.0/tokenRequest body (x-www-form-urlencoded):
client_id=<your_client_id> client_secret=<your_client_secret> scope=https://api.businesscentral.dynamics.com/.default grant_type=client_credentialsSee details in Microsoft Docs – Client credentials flow
Token in your request headers:
Authorization: Bearer <access_token>API endpoint:
https://api.businesscentral.dynamics.com/v2.0/{environment}/api/pimics/publication/v2.0