ml-connector
Microsoft Dynamics 365 F&OSquare

Microsoft Dynamics 365 F&O and Square integration

Microsoft Dynamics 365 F&O runs financials, receivables, and the general ledger. Square runs the point of sale, online checkout, and the payments behind them. Connecting the two means card takings, refunds, and bank payouts captured in Square flow into Microsoft Dynamics 365 F&O as customer sales and receivables without re-keying, and the customer master stays in agreement. ml-connector handles the different APIs on each side and moves the data on the cadence you set. Because Square has no chart of accounts, the general ledger stays in Microsoft Dynamics 365 F&O where it belongs.

How Microsoft Dynamics 365 F&O works

Microsoft Dynamics 365 F&O exposes customers, products, main accounts, financial dimensions, customer payment journal lines, and posted general journal entries through OData v4 REST endpoints at a tenant-specific operations.dynamics.com URL, so there is no shared hostname. It authenticates with OAuth2 client credentials through Microsoft Entra ID, returning a one-hour Bearer token that is re-requested rather than refreshed. It can push outbound Business Events such as customer invoice posted, but those payloads are lightweight stubs that carry identifiers and a ControlNumber, not full records, so finance records are read by polling OData with server-driven paging and cross-company scoping.

How Square works

Square exposes payments, refunds, payouts, orders, invoices, catalog items, and customers through its versioned REST API at connect.squareup.com, using a Bearer access token plus a Square-Version header on every call. Multi-account connectors use OAuth2 authorization code with a 30-day access token and a refresh token, while a single Square account can use a personal access token. Most resources are scoped to a location_id, write operations take an idempotency_key in the body, and lists are cursor-paged. Square pushes HMAC-SHA256 signed webhooks for events such as payment.created, refund.updated, invoice.payment_made, and payout activity, but it has no chart of accounts and no purchase order API.

What moves between them

The main flow runs from Square into Microsoft Dynamics 365 F&O. ml-connector reads Square payments, refunds, and payouts and posts them into D365 as customer payment journal lines and receivables, mapped to the matching main accounts and financial dimensions, with each Square location resolved to a legal entity. Paid invoices and completed orders post as customer sales so revenue is recognized in the ledger. Customer profiles flow the same direction so the D365 customer master reflects Square buyers, and catalog references are aligned so order lines resolve to real D365 products. Square has no GL resource, so ml-connector never writes ledger entries back into Square.

How ml-connector handles it

ml-connector stores both credential sets encrypted. On the Square side it sends the Bearer access token and the Square-Version header on every call, proactively refreshing the OAuth2 token before its 30-day expiry rather than waiting for a 401, and it scopes each read to the right location_id. On the D365 side it accepts the full tenant operations.dynamics.com host per customer, requests a Microsoft Entra ID client-credentials token, and re-requests it when the hour expires. Square locations and catalog items are mapped to D365 legal entities, financial dimensions, and product numbers first, so every posting lands on a valid account. Square HMAC-SHA256 webhooks for payment, refund, and payout events act as triggers, verified with a constant-time compare before processing and answered with a prompt 200 so Square does not retry, while the work runs asynchronously. Because D365 Business Events are stubs and order is not guaranteed, ml-connector polls OData for the full record on a schedule rather than trusting the push payload. Square writes carry an idempotency_key and D365 uses natural keys with no idempotency header, so ml-connector dedupes on the Square payment id and a BullMQ jobId before posting to D365, which avoids double-booking a re-read payment. D365 returns HTTP 429 with Retry-After and Square returns 429 with rate-limit headers, so both sides back off and retry. Every record carries a full audit trail and can be replayed if a downstream call fails.

A real-world example

A regional specialty retailer with a dozen storefronts and an online shop runs Microsoft Dynamics 365 F&O for finance and inventory and takes every sale through Square at the counter and online. Before the integration, a bookkeeper exported Square reports each morning and keyed daily takings, refunds, and the bank payout into D365 by hand, so the receivables never tied to the deposit and reconciling card fees against the ledger dragged into month-end close. With Microsoft Dynamics 365 F&O and Square connected, each payment, refund, and payout posts into D365 automatically, allocated to the legal entity and dimension for the location it came from. The deposits already reconcile, the manual export step is gone, and close starts from numbers that agree.

What you can do

  • Post Square payments, refunds, and payouts into Microsoft Dynamics 365 F&O as customer receivables against the correct main accounts.
  • Map each Square location to a D365 legal entity and financial dimension so takings land on valid accounts.
  • Keep the D365 customer master aligned with Square buyer profiles, and resolve order lines to real D365 products.
  • Authenticate Square with OAuth2 token refresh and D365 with Microsoft Entra ID client credentials.
  • Trigger on HMAC-verified Square webhooks, dedupe on payment id and jobId, and keep a full audit trail on every record.

Questions

Which direction does data move between Microsoft Dynamics 365 F&O and Square?
The main flow is Square into Microsoft Dynamics 365 F&O. Payments, refunds, payouts, paid invoices, and customer profiles move from Square into D365 as receivables and customer records, while catalog references are aligned so order lines resolve to real products. Square has no chart of accounts, so the general ledger stays in D365 and ml-connector never writes ledger entries back into Square.
Does Square push events, or does ml-connector poll Dynamics 365 F&O?
Both happen. Square pushes HMAC-SHA256 signed webhooks for payment, refund, and payout events, which ml-connector verifies and uses as triggers. D365 Business Events are lightweight stubs and delivery order is not guaranteed, so ml-connector polls the D365 OData API to read the full record and to post the journals, paging through results on a schedule you control.
How are duplicate payments prevented when records are re-read?
Square write operations accept an idempotency_key, but D365 OData has no idempotency header and relies on natural keys. ml-connector dedupes on the Square payment id together with a BullMQ jobId before it posts to D365, so a payment that is re-read after a webhook retry or a poll is not booked twice. Failed posts are retried with backoff against the 429 limits on both sides.

Related integrations

More Microsoft Dynamics 365 F&O integrations

Microsoft Dynamics 365 F&O and Adobe CommerceMicrosoft Dynamics 365 F&O and ADPMicrosoft Dynamics 365 F&O and AdyenMicrosoft Dynamics 365 F&O and AirbaseMicrosoft Dynamics 365 F&O and Amazon Seller CentralMicrosoft Dynamics 365 F&O and AnaplanMicrosoft Dynamics 365 F&O and SAP AribaMicrosoft Dynamics 365 F&O and AsanaMicrosoft Dynamics 365 F&O and AvalaraMicrosoft Dynamics 365 F&O and AvidXchangeMicrosoft Dynamics 365 F&O and BambooHRMicrosoft Dynamics 365 F&O and Basware

Other systems that connect to Square

Acumatica and SquareDATEV and SquareDeltek and SquareMicrosoft Dynamics 365 Business Central and SquareMicrosoft Dynamics GP and SquareMicrosoft Dynamics NAV and SquareEpicor Kinetic and SquareExact Online and SquareFreshBooks and SquareIFS Cloud and SquareInfor CloudSuite and SquareSage Intacct and Square

Connect Microsoft Dynamics 365 F&O and Square

Free to use. Add your credentials, ping your real systems, and see if we fit.

Get started