Migrating from ADAL to MSAL for downloadable VHD

Question

Hi,

I got a notification from Microsoft which mentions there is an app that is still using ADAL and it's recommended I upgrade to MSAL. I looked around to see how to do this and the majority involves modifying my application to use the newer libraries.

However the app it detected for me is an out of the box F&O solution. It involves downloading a VHD, installing it and then registering the new app. The instructions are here:

https://learn.microsoft.com/en-us/dynamics365/fin-ops-core/dev-itpro/dev-tools/vhd-setup

There is no coding changes involved, so I can't modify the application. The instructions on how to register a new app doesn't mention how I can change from ADAL to MSAL. I was wondering if there is a solution for this? Any help would be appreciated.

Jason

Answer 1

Hi @Jason Yeung , I reached out to several product group engineers to confirm for you, but my understanding is that out-of-the box solutions don't require direct code modifications. Just make sure you have the most current version.

You should however update the app registration. under Authentication of the app registration, configure the redirect URIs to use the latest OAuth 2.0 endpoints. MSAL typically uses the v2.0 endpoint.

If you're using implicit flows, MSAL prefers using authorization code flow with PKCE instead. MSAL also does not require ID tokens and Access tokens under Implicit grant and hybrid flows.

Also check that any API permissions are updated accordingly.

It may be easier for you to just re-register the application instead of going through a checklist.

Please let me know if you have any questions and I can help you further.

If this answer helps you please mark "Accept Answer" so other users can reference it.

Thank you,

James