?
Solved

ADFS 2.0 and Domain Authorization for Dynamics CRM 2011

Posted on 2012-04-13
4
Medium Priority
?
1,044 Views
Last Modified: 2012-04-13
I have server crm-test9.ifd.local. I have configured internal ADFS access for name https://crm.ifd.com and external (IFD) access through https://testorg.ifd.com. And everything works fine, but in both ways application server first contacts to ADFS and to do DC directry. But our developers want to add some service that can login only through domain authorization without any claim. Is there any way to make CRM deployment work with 2 types of authorisation simultaneously?
0
Comment
Question by:roma_vt
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
  • 2
4 Comments
 
LVL 30

Expert Comment

by:Feridun Kadir
ID: 37842871
I believe that CRM and IFD only works with claims-based authentication. You don't have to use AD FS 2.0 for the claims authentication, other secure token service providers are supported. But I'm fairly sure that for an IFD claims (and AD) is required to authenticate users.
0
 

Author Comment

by:roma_vt
ID: 37842918
Ok, may be I make a mistake in my question. I mean if I turn off ADFS server after I have configured IFD for CRM, is there any way to log on to CRM?
0
 
LVL 30

Accepted Solution

by:
Feridun Kadir earned 2000 total points
ID: 37842927
If you turn off ADFS then CRM users cannot log on to CRM. You will have to disable IFD and Claims-based authentication.
0
 

Author Closing Comment

by:roma_vt
ID: 37842934
And again thanks to Feridun=)
0

Featured Post

Simplifying Server Workload Migrations

This use case outlines the migration challenges that organizations face and how the Acronis AnyData Engine supports physical-to-physical (P2P), physical-to-virtual (P2V), virtual to physical (V2P), and cross-virtual (V2V) migration scenarios to address these challenges.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

This process allows computer passwords to be managed and secured without using LAPS. This is an improvement on an existing process, enhanced to store password encrypted, instead of clear-text files within SQL
Compliance and data security require steps be taken to prevent unauthorized users from copying data.  Here's one method to prevent data theft via USB drives (and writable optical media).
This tutorial will walk an individual through the process of transferring the five major, necessary Active Directory Roles, commonly referred to as the FSMO roles to another domain controller. Log onto the new domain controller with a user account t…
Sometimes it takes a new vantage point, apart from our everyday security practices, to truly see our Active Directory (AD) vulnerabilities. We get used to implementing the same techniques and checking the same areas for a breach. This pattern can re…
Suggested Courses

752 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question