We set up the Hybrid Connector to connect our SharePoint Online with our Customer Engagement 9.1 on-premises this summer.
Now we’re trying to set the Hybrid Connector to connect to our Exchange Online.
There seems to be a conflict in the way the instructions say to prepare the certificate. This results in only being able to use one or the other. Setting up one the right way requires breaking the other. Both require running the CertificateReconfiguration.ps1 script but they specify a different service account for each (for Exchange it’s the async account for SharePoint it’s the webapp one). The script doesn’t accept specifying more than one service account. Do I need to use two different certs? Has anyone done this? Help!
Hi Allison,
What you’re running into is actually pretty common when trying to connect both SharePoint Online and Exchange Online to on-prem Dynamics 365 (CE 9.1) using the Hybrid Connector.
The issue with the CertificateReconfiguration.ps1 script only accepting one service account is real — many teams face this. In most cases, the practical solution is to use two different certificates — one for Exchange and one for SharePoint — each set up with its own service account. That way, you avoid conflicts and both integrations can work smoothly.
We’ve helped clients set this up at AllGrow Technologies, and it’s totally doable without breaking anything. If you’d like any help reviewing your setup or making it work without headaches, feel free to reach out — happy to jump in.
Hi Allison,
did you find the answer you were looking for ? coz this post is old now. I have solution to your post for new visitor’s.
You’ll need to handle each Hybrid Connector configuration separately. SharePoint Online with CE 9.1 on-prem uses the webapp service account for CertificateReconfiguration.ps1, while Exchange Online uses the async account. The script only supports one service account at a time, so you can’t reuse the exact same cert configuration for both.
The cleanest solution is to use two separate certificates — one for the SharePoint hybrid and one for the Exchange hybrid. That way, running the script for one service won’t break the other.
We ended up setting up the Hybrid connector to use the same service account for both Exchange Online and SharePoint Online.
Microsoft changed how you authenticate with SharePoint online since then. We had to configure an Azure app for SharePoint access. Create an Azure application for Dynamics 365 Customer Engagement (on-premises) with SharePoint permissions | Microsoft Learn