You will need to provide Spotler with a Client ID, Client Secret, and Tenant ID from your Dynamics environment so the Spotler Connect connector can connect to it. This page explains what you need to do. You will first need to create a dedicated app registration in Entra ID and share its Client ID, Client Secret, and Tenant ID with Spotler Connect. After that, you will need to create an Application User in the target Dynamics environment and assign the appropriate security role. These steps are required so Spotler Connect can authenticate securely and receive the permissions needed to read, create and/or update your CRM data. The following instructions explain exactly where to find each value and how to complete the configuration.
Dedicated App Registration
- Login to: https://portal.azure.com/.
-
Open the menu at the top left corner.
-
Click on 'All services' and search for 'App registrations' and click on it.
-
Click on 'New Registration'.
-
Provide a Name (such as 'SpotlerApp') and choose for ‘Accounts in this organizational directory only’ as the 'Supported account type'. The Redirect URI can be ignored as it is not mandatory. And click ‘Register’.
-
Once created, click on 'Add a certificate or secret'.
-
Click 'New Client Secret'.
-
Fill in the Description (such as ‘SpotlerApp’) and choose when you want it to be expired and click on 'Add':
- Copy the Value provided, as this is your Client Secret. Since it is only shown once and will no longer be visible after you leave the page, make sure to store it securely so it can be shared later for the setup.
- Keep note of the Application (client) ID that is automatically generated for your new App. This can be found under the Apps overview below: https://portal.azure.com/#blade/Microsoft_AAD_IAM/ActiveDirectoryMenuBlade/RegisteredApps
-
Please securely provide Spotler with the Client ID, Client Secret, and Tenant ID.
Please note
Contact your Spotler representative for guidance on how to provide the Client ID, Client Secret, and Tenant ID securely.
Create an Application User
- Navigate to : https://admin.powerplatform.microsoft.com/environments
- Click into the Dynamics environment you would like to provide access to.
-
Click on ‘Settings’.
-
Click on the ‘Users + permissions’ dropdown, and then select 'Application users'.
-
Click on 'New app user'.
-
Click on ‘Add an app’ and add the app from Microsoft Entra ID that you created previously (such as ‘SpotlerApp’). Select the ‘Business unit’ from the drop-down to provide access. Select the Security role(s) needed. The “System Administrator” role is certainly sufficient. If you choose a different role, make sure it has the appropriate permissions to read, create, and modify the entities required by the connector. And click ‘Create’.
Required Table Privileges for the Spotler Integration
If you do not use 'System Administrator' as a security role, make sure the role you use has the appropriate permissions to read, create, and write the entities required by the connector below:
| Table | Read | Create | Write | Condition |
Account |
✅ |
✅ |
✅ |
Always required |
Contact |
✅ |
✅ |
✅ |
Only if Contact creation mode is enabled |
Lead |
✅ |
✅ |
✅ |
Only if Lead creation mode is enabled |
Marketing List ( |
✅ |
— |
— |
Always required |
List Member ( |
✅ |
— |
— |
Always required |
Campaign Activity ( |
✅ |
✅ |
— |
Only if campaign sync is enabled |
Campaign ( |
✅ |
✅ |
— |
Only if campaign sync is enabled |
Campaign Activity Item ( |
✅ |
— |
— |
Only if campaign sync is enabled |
sp_spotleractivities (custom table) |
— |
✅ |
— |
Always required for activity write-back |
Required Relationship Privileges (Append / Append To)
| Privilege | Table |
Append |
|
Append To |
Contact, Lead, Account, Campaign Activity, Campaign |
Please note
- Field Security: If any synced columns use Field-Level Security, you must also create or update a Field Security Profile granting read/update access for the integration user. Role privileges alone are not sufficient.
- Dynamic Marketing Lists: If list queries reference linked tables (e.g. Account or custom tables), grant Read on those linked tables as well.