Skip to main content

How to Remove the “Not Secure” Message in Dynamics 365 for Finance and Operations (OneBox)

Why This Happens: 

The “Not Secure” message appears because the site certificate doesn’t meet the latest security standards. Chrome, unlike Internet Explorer, treats it as invalid. From Chrome 58 onwards, only the subjectAlternativeName extension is used to match the domain name and site certificate, not the commonName. A registry fix was available but only worked up to version 65. More details can be found here.

How to Fix It: 

You need to issue a new self-signed certificate for *.cloud.onebox.dynamics.com and update the website binding settings to use it.

Step 1: Create a New Self-Signed Certificate Run the following PowerShell command as an administrator:

New-SelfSignedCertificate -Subject "CN=*.cloud.onebox.dynamics.com,O=Microsoft Corporation,L=Redmond,S=WA,C=US" -DnsName "*.cloud.onebox.dynamics.com", "usnconeboxax1ecom.cloud.onebox.dynamics.com", "usnconeboxax1pos.cloud.onebox.dynamics.com", "usnconeboxax1ret.cloud.onebox.dynamics.com" -CertStoreLocation "cert:\LocalMachine\My" -KeyUsage DataEncipherment, KeyEncipherment, DigitalSignature -HashAlgorithm "SHA384" -KeyAlgorithm RSA -KeyLength 2048 -NotAfter (Get-Date).AddYears(5)

This command creates a new certificate that expires in 5 years. You can also use a free Self-Signed Certificate Generator for this purpose.



Step 2: Copy the New Certificate to Trusted Certificates Folder Open “Manage computer certificates” (certlm). Find the new certificate in the Personal\Certificates folder. It will have the same name as the old one but with a different expiration date. Copy and paste the new certificate into the Trusted Root Certification Authorities\Certificates folder.



Step 3: Bind the New Certificate with D365FO

  1. Open Internet Information Services (IIS) Manager.
  2. Navigate to the AOSService site.
  3. Click the Bindings link on the right.
  4. Select the host name and click the Edit button.
  5. In the Edit Site Binding dialog, open the SSL certificate drop-down selection box.
  6. Select the new certificate (check the expiration date to confirm).

If prompted, confirm the change for other related sites as well.

Close all dialogs and restart the AOSService by clicking the Restart link under Manage Websites.

Step 4: Test the Connection Restart Chrome and navigate to D365FO. The connection should now be secure.







Comments

Post a Comment

Popular posts from this blog

Fixing the “Can’t Stop DynamicsAxBatch” Error During Admin User Provisioning in Dynamics 365 F&O

 If you're working with Microsoft Dynamics 365 for Finance and Operations (D365 F&O) and encounter the dreaded error “Can’t stop DynamicsAxBatch” while using the Admin User Provisioning Tool , you're not alone. This guide walks you through a quick and effective solution to resolve the issue and get back to work without delays. 🛠️ What Is the Admin User Provisioning Tool? The Admin User Provisioning Tool is used to register a user as an administrator on a D365 F&O instance—typically for development and customization purposes. You provide your Azure AD credentials (email address) to gain admin access. ❌ The Problem: “Can’t Stop DynamicsAxBatch” Error While registering via the Admin Provisioning Tool or attempting to stop the service manually through Windows Services , you might encounter an error stating: “Can’t stop DynamicsAxBatch” This error prevents you from proceeding with the registration process.  The Solution: Step-by-Step Fix  Step 1: Try Stoppi...
Post a Comment
Read more

How to get batch header and recurrence information in service class for sysoperation frame work in D365 F&O

  BatchHeader batchHeader         = this.getCurrentBatchHeader();         int         timeUnitsSelected   = 0;         if(this.isExecutingInBatch())         {             RefRecId batchRecId = batchHeader.parmBatchHeaderId();             BatchJob batchJob;             select firstonly batchJob             where batchJob.RecId == batchRecId;                      SysRecurrenceData recurrenceData = batchjob.recurrenceData;             SysRecurrenceUnit timeUnits = conPeek(recurrenceData, 7);             timeUnitsSelected = timeUnits;         }
Post a Comment
Read more

Table Keys: Surrogate, Alternate, Replacement, Primary, and Foreign

Primary key A primary key is one type of key. The other type of key is an alternate key. There is a maximum of one primary key per table , whereas a table can have several alternate keys . The primary key is usually the type of key that other tables, called child tables, refer to when a foreign key field in those other tables need a relational identifier. Starting in Microsoft Dynamics AX 2012 the primary key for every new table is always enforced by an index that has exactly one field. The one field is usually an incremented number or a completely meaningless number that is generated by the system. For new tables the default is a primary key based on the RecId field. This is represented as the surrogate key in the user interface. The following table describes the  PrimaryIndex   property and other major properties that are related to keys. Property Description PrimaryIndex The drop-down list contains the surrogate key plus every index on the table that has its  Alternate...
Post a Comment
Read more