<div>
<div class="content wysiwyg-content">
I have finished configuring Claims-based authentication for internal user access to CRM 2013 which all works.<br />
<br />
Now I am configuring the ADFS server for IFD via the wizard which I have done, and I have built the below servers in my DMZ and applied Access Rules on my firewall (Cisco ASA). However, the access rule between the two DMZ server are set to communicate over TCP port 444, instead of port 443 like the rest of the internal https access internally.<br />
<br />
Server 1 (DMZ) - CRM Front-End Web Server (has CRM 2013 FE installed and introduced to the internal CRM organisation<br />
Server 2 (DMZ) - ADFS Proxy server<br />
<br />
The reason I configured the access rule between the 2 DMZ servers over port 444 if because the Front End Web server also has ADXStudio (3rd party) CRM access portal for CRM installed on it and that has been configured also to use port 443 I believe.<br />
<br />
My question - can I configure my Front End Web server and ADFS Proxy server to communicate over port 443? Or is it best practice to use a separate port for DMZ server communication?
</div>
</div>


I have finished configuring Claims-based authentication for internal user access to CRM 2013 which all works.

Now I am configuring the ADFS server for IFD via the wizard which I have done, and I have built the below servers in my DMZ and applied Access Rules on my firewall (Cisco ASA). However, the access rule between the two DMZ server are set to communicate over TCP port 444, instead of port 443 like the rest of the internal https access internally.

Server 1 (DMZ) - CRM Front-End Web Server (has CRM 2013 FE installed and introduced to the internal CRM organisation
Server 2 (DMZ) - ADFS Proxy server

The reason I configured the access rule between the 2 DMZ servers over port 444 if because the Front End Web server also has ADXStudio (3rd party) CRM access portal for CRM installed on it and that has been configured also to use port 443 I believe.

My question - can I configure my Front End Web server and ADFS Proxy server to communicate over port 443? Or is it best practice to use a separate port for DMZ server communication?

Configure the AD FS server for IFD for CRM 2013

Microsoft Dynamics is a line of enterprise resource planning (ERP) and customer relationship management (CRM) software applications. Dynamics can be used with other Microsoft solutions, such as SharePoint, Yammer, Office 365, Azure and Outlook. Dynamics ERP comprises a group of enterprise-resource-planning products includes Dynamics AX (formerly Axapta), a multi-language, multi-currency enterprise software with business management features for financial, human resources, and operations management; Dynamics GP (formerly Great Plains Software); Dynamics NAV (formerly Navision) for financials, supply chain, and people; Dynamics SL (formerly Solomon IV)for project-driven organizations; Dynamics C5 (formerly Concorde C5) for manufacturing, supply chains, analytics and electronic commerce; and Dynamics CRM.

Microsoft Dynamics

Cisco PIX is a dedicated hardware firewall appliance; the Cisco Adaptive Security Appliance (ASA) is a firewall and anti-malware security appliance that provides unified threat management and protection the PIX does not. Other Cisco devices and systems include routers, switches, storage networking, wireless and the software and hardware for PIX Firewall Manager (PFM), PIX Device Manager (PDM) and Adaptive Security Device Manager (ASDM).

Cisco

IIS is Internet Information Services, the web server included with Windows Server operating systems. All current versions are built on a modular architecture; modules can be added or removed individually so that those required for specific functionality are installed. The full installation of IIS includes HTTP, security, content, compression, caching, logging and diagnostics.