Security Insights for D365 FO
Setup for Security Insights for D365 FO
Setup for Security Insights for D365 FO
Start by creating a new Application Insights instance in Azure. See MS doc.
Navigate to Configure > API Access and copy the Application Id. Refer to Application Id The application id will be used to link Security Insights for D365 FO to your Azure Application Insights instance in Step 4 later.
All requests made by the Security Insights for D365 FO ISV to Azure Application Insights using the Azure Monitor Application Insights endpoint https://api.applicationinsights.io. To access the endpoint, you must authenticate through Microsoft Entra ID. To access Azure REST APIs for fetching data, an authorization token will need to be generated based on a client ID and secret. The token will be received by Security Insights for D365 FO and passed in the REST API request.
Follow the instructions in the below documents to register the Azure Application Insights in app registration and set up authentication:
Note: Copy the Tenant ID, Client ID and Client Secret values during this step. This will be used to link Security Insights for D365 FO to Azure Application Insights application in the next step (Step 4).
Find and enable the feature Security Insights for D365FO to enable the product
The Insights for user access and security parameters page within Security admininstration is used to define the configuration required to connect to the app created for your Azure application insights in Step 2.
Multiple Insights connections can be configured and the applicable one selected when running Fetch interaction data from application Insights on page Insights for user access and security which fetches accessed menu items withing the selected time period.
Navigate to System administration > Insights for user access and security > Insights for user access and security parameters
Click New to create a new record and enter the the following fields for the Azure Application Insights instance.
| Field | Description |
|---|---|
| Description | A description for your app |
| Application Insights App ID | The Application Id of your Azure Application Insights instance copied in Step 1 above. |
| Tenant ID | This is the unique identifier of the Azure Active Directory instance |
| Client ID | This identifier will be assigned when the Azure Application Insights instance is registered up as an application in Step 2. |
| Client secret | The secret value (string) that the application uses to prove its identity when requesting a token. Enter the secret value generated in Step 2 when a New client secret was created. |
Use the Validate button to validate the Insights instance.
The following batch process options can be used for batch performance improvement:
Examples:
| Number of enabled D365 users | Maximum batch tasks | Minimum users per task | Result: Number of tasks |
|---|---|---|---|
| 110 | 2 | 10 | 2 |
| 110 | 20 | 10 | 11 |
Applies to the following two processes when run as batch:
Ability to highlight unused licenses for a user and each role for the selected user in Security insights by user
Select required colour in field Background color for unused license fields.
