Welcome to Community Week 2025! Join us to learn, connect, and be recognized as we celebrate the spirit of Community and the power of AI. Get the details  

SAM: M365 dynamics integration

MD_1308
Tera Contributor

yesterday

Hi Community,

 

I am trying to integrate ServiceNow SAM and M365 dynamics. After getting the EntraID application registered and receiving the permissions added I updated the Dynamics environment details. While configuring I am able to validate OAuth token for 'Download Subscription Subflow' and 'Calculate Activity Subflow'. However, 'validate connection' is failing. Not sure how can I troubleshoot this. Your advice is valuable here.

MD_1308_0-1762354943657.pngMD_1308_1-1762354973344.png

 

MD_1308_2-1762355006138.png

 

0 Helpfuls
  • 245 Views
4 REPLIES 4

AndrewO
Tera Contributor

yesterday

Hi,
I have the same situation with Microsoft 365 and Adobe Cloud Integration. Since the Zurich upgrade, the Import User Subscription Job schedule status has failed. The support pointed to a KB that resolves the issue, which advises deleting and recreating the integration profile. Upon deletion and recreation, it has been unable to validate the connection, showing "Connection validation is not successful; please check the connection and credentials and try again.

0 Helpfuls

SAMfluencer786
ServiceNow Employee
ServiceNow Employee
In response to AndrewO

yesterday

Hi @AndrewO ,

 

We faced a similar issue with two of our clients. Upon further troubleshooting, we found that the SaaS plugin had been upgraded to the latest version, and during the upgrade, the Organization ID was removed. Once we re added the Organization ID and re ran the job, it worked successfully.

 

Regards,

Abhishek

0 Helpfuls

MD_1308
Tera Contributor
In response to AndrewO

yesterday

Hi @AndrewO 

 

With Adobe integration I had similar situation, the job was failing.  As @SAMfluencer786  suggested we updated Org Id additionally we were advised to keep 'Run as' empty for the scheduled job 'SAM - Import Adobe User Subscriptions'. This helped. 

0 Helpfuls

SAMfluencer786
ServiceNow Employee
ServiceNow Employee

yesterday

Hi @MD_1308 ,

 

To review roles for the User on Microsoft Entra and assign the necessary roles. Please review if the Global admin/Global Reader role is missing for this user who fetched the OAuth token. 

KB:
https://support.servicenow.com/kb?id=kb_article_view&sysparm_article=KB1637221
For reference:
https://learn.microsoft.com/en-us/troubleshoot/entra/entra-id/app-integration/error-code-aadsts50105...
https://learn.microsoft.com/en-us/entra/identity/role-based-access-control/permissions-reference

Please review the role for this on Microsoft Entra and assign the necessary roles are allowed.
https://stackoverflow.com/questions/77493992/user-is-not-in-the-allowed-roles-when-pulling-m365-sign...

Roles required for the user on the Microsoft end:
=> Application developer
=> Global reader/Reports reader/ Security/Administrator/Security operator/Security reader
=> User Administrator

Scope permissions required based on the selection of Process on the integration profile

1. User.Read.All
2. GroupMember.Read.All
3. Application.Read.All
4. AuditLog.Read.All
5. User.ReadWrite.All

Additionally refer the following articles that speak to the correct role assignments:
https://learn.microsoft.com/en-us/entra/identity/saas-apps/servicenow-tutorial
https://www.servicenow.com/docs/bundle/yokohama-it-asset-management/page/product/software-asset-mana...

 

Regards,

Abhishek

If my response helped, please mark it as the Accepted Solution Cheers!

0 Helpfuls