Basically, I'm looking to use a custom connector in combination with Entra ID to create a solution such that anybody would be able to import the solution into any tenant, and access data from one of the tables in our tenant, without us having to provide the secret to the Entra ID directly.
Originally, I wanted to use Entra's Dataverse impersonation, meaning have the connector connect to the entra app, and then just running the dataverse api, but from what I could tell that required using the service principal, which is not what we're looking for, since that means when they import into another environment, they would need the app secret again.
Is there a way to:
- Use service principal but make it so the readding connection with secret again when importing by new users into new tenants is not required.
- Get the impersonation working without the service principal.
- Connect the custom connector to our tenant without Entra
Otherwise, assuming none of those are possible, what would be the simplest alternative, using the entra ID app to set up web application/api and accessing that through the custom connector? Or perhaps something else?