Note
Access to this page requires authorization. You can try signing in or changing directories.
Access to this page requires authorization. You can try changing directories.
| Enabled for | Public preview | General availability |
|---|---|---|
| Admins, makers, marketers, or analysts, automatically | 
Apr 7, 2025 |
Apr 7, 2025 |
Business value
AppSource apps for Business Central can read secrets from Azure Key Vault that the publishing partner owns. To make this feature available to a partner's AppSource app, the partner previously needed to complete a manual process that involved contacting Microsoft. This process could cause waiting times. The process also required a new version of the app to ensure Azure Key Vault availability. To simplify the process, you now onboard to Azure Key Vault as part of the AppSource submission. The app can use its Azure Key Vault right away.
Feature details
To register a key vault for an app, partners no longer need to send an email and wait for us to register their Entra Tenant ID.
Instead, partners must:
- Grant read permission to the Dynamics 365 Business Central ISV Key Vault Reader app.
- Create a special secret named
AllowedBusinessCentralAppIdsin their key vault. This secret contains the app IDs for all apps that access the key vault. For multiple app IDs, separate them with a comma.
To reduce registration waiting time, follow this process.
To submit higher versions of an app, AppSource apps must add the AllowedBusinessCentralAppIds secret if they already registered their Entra Tenant ID. If this reserved secret is missing, the submission likely fails.
Geographic areas
Visit the Explore Feature Geography report for Microsoft Azure areas where this feature is planned or available.
Language availability
Visit the Explore Feature Language report for information on this feature's availability.
Tell us what you think
Help us improve Dynamics 365 Business Central by discussing ideas, providing suggestions, and giving feedback. Use the forum at https://aka.ms/bcideas.