?
Solved

ADFS 2.0 and Domain Authorization for Dynamics CRM 2011

Posted on 2012-04-13
4
Medium Priority
?
1,048 Views
Last Modified: 2012-04-13
I have server crm-test9.ifd.local. I have configured internal ADFS access for name https://crm.ifd.com and external (IFD) access through https://testorg.ifd.com. And everything works fine, but in both ways application server first contacts to ADFS and to do DC directry. But our developers want to add some service that can login only through domain authorization without any claim. Is there any way to make CRM deployment work with 2 types of authorisation simultaneously?
0
Comment
Question by:roma_vt
  • 2
  • 2
4 Comments
 
LVL 30

Expert Comment

by:Feridun Kadir
ID: 37842871
I believe that CRM and IFD only works with claims-based authentication. You don't have to use AD FS 2.0 for the claims authentication, other secure token service providers are supported. But I'm fairly sure that for an IFD claims (and AD) is required to authenticate users.
0
 

Author Comment

by:roma_vt
ID: 37842918
Ok, may be I make a mistake in my question. I mean if I turn off ADFS server after I have configured IFD for CRM, is there any way to log on to CRM?
0
 
LVL 30

Accepted Solution

by:
Feridun Kadir earned 2000 total points
ID: 37842927
If you turn off ADFS then CRM users cannot log on to CRM. You will have to disable IFD and Claims-based authentication.
0
 

Author Closing Comment

by:roma_vt
ID: 37842934
And again thanks to Feridun=)
0

Featured Post

Has Powershell sent you back into the Stone Age?

If managing Active Directory using Windows Powershell® is making you feel like you stepped back in time, you are not alone.  For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

This process allows computer passwords to be managed and secured without using LAPS. This is an improvement on an existing process, enhanced to store password encrypted, instead of clear-text files within SQL
In the absence of a fully-fledged GPO Management product like AGPM, the script in this article will provide you with a simple way to watch the domain (or a select OU) for GPOs changes and automatically take backups when policies are added, removed o…
This tutorial will walk an individual through the steps necessary to join and promote the first Windows Server 2012 domain controller into an Active Directory environment running on Windows Server 2008. Determine the location of the FSMO roles by lo…
Attackers love to prey on accounts that have privileges. Reducing privileged accounts and protecting privileged accounts therefore is paramount. Users, groups, and service accounts need to be protected to help protect the entire Active Directory …
Suggested Courses

807 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question