Technical OAuth2 Migration for SharePoint Integration in cc|dms and COSMO DMS
1. Background
Microsoft is retiring Azure ACS (Access Control Service) for SharePoint Online (Retirement: April 2, 2026). The previous SharePoint App authentication (Credential Type: SharePoint App) no longer works in new tenants. All existing DMS installations must be migrated to OAuth 2.0.
Reference: Azure ACS Retirement Announcement
2. Affected Versions and Solution Paths
| Platform | DMS Version | Solution | Guide |
|---|---|---|---|
| NAV 2018 | cc|dms v111.00.01.03 | OAuth2 via ROPC + updated DLL | NAV2018 Guide |
| BC 16 – 18 | COSMO DMS from v2.3.0.0 | New Credential Type OAuth 2.0 (AL) |
BC16-BC18 Guide |
| BC 19+ | COSMO DMS from v2.5.0.0 | OAuth 2.0 integrated in standard setup | Setup Documentation |
*NAV 2018 can serve as a possible baseline for comparable implementations in older NAV versions and BC 14.
Key Differences
| NAV 2018 | BC 16–18 | BC 19+ | |
|---|---|---|---|
| Authentication | ROPC (Delegated) | Auth. Code | Auth. Code or Client Credentials |
| Technology | C/AL + external DLL | Native AL | Native AL |
| MFA Support | No | Yes | Yes |
| Cherry-Pick required | No (DLL replacement) | Yes (Branch release/2.3_OAuth2.0) |
No |
3. Delivery & Responsibilities
Important:
- No ready-made app is provided by the DMS product team.
- Project teams are responsible for delivering the solution.
- Support from the DMS product team is only provided on a billable-effort basis. Implementation remains the responsibility of the project team.
4. Important Additional Note on Microsoft's Authentication Change
Microsoft has announced that legacy authentication (including IDCRL) in SharePoint Online has been blocked by default since February 16, 2026. Temporary re-enablement is only available until April 30, 2026; from May 1, 2026 onward, this method will be permanently removed.
Microsoft Dev Blog: Migrating from IDCRL authentication to modern authentication in SharePoint
The NAV 2018 variant provided should be treated as a reference implementation and can be used as a technical starting point for required adjustments in legacy systems.