Solved

CRM 2013 IFD setup

Posted on 2014-07-18
3
394 Views
Last Modified: 2014-07-18
We are looking at implementing CRM 2013 to a small user group of salesman 15-25. As it stands we will have these servers in our internal network. CRM2013 Application server hosting all rules, SQL server, ADFS 2.0 server. We are looking to add ADFS proxy and CRM 2013 IFD services to our perimeter network. The question I'm looking to answer as simple as it sounds is, does the IFD web server need to be joined to the domain?
0
Comment
Question by:gregashcom
  • 2
3 Comments
 
LVL 29

Accepted Solution

by:
Feridun Kadir earned 500 total points
ID: 40204803
The ADFS Proxy does not need to be joined to the domain.

All servers that run CRM roles do need to be joined to the domain, but there isn't a specific IFD role for CRM.
0
 
LVL 1

Author Closing Comment

by:gregashcom
ID: 40204851
Thanks This answers my question. As for the specific IFD role, Sorry my question was worded poorly. That all being said I cannot see why I wouldn't just NAT 443 to internal IFD. Can you speak to security concerns or anything regarding IFD and Perimeter network?
0
 
LVL 29

Expert Comment

by:Feridun Kadir
ID: 40204953
You certainly can NAT port 443 to the CRM server that has the web application server role.

Personally I'm not that fussed about setting up DMZ. I like to think (perhaps a bit naively) that my router will do a good job of blocking unwanted traffic.

For CRM and IFD, only port 443 needs to be opened to the servers on the LAN. I go with the view that the risk of someone high-jacking an internal server via accessing ADFS and CRM on those ports is rather low.

So I would be fine with a setup of two servers, one for ADFS and one for CRM (server with the Web application role) that are accessible over the Internet via port 443 using NAT on the router.  I'm not totally convinced that an ADFS proxy is needed - but I would defer to people more experienced in AD FS than me on that point.  I guess it is all down to degrees of risk.
0

Featured Post

Is Your Active Directory as Secure as You Think?

More than 75% of all records are compromised because of the loss or theft of a privileged credential. Experts have been exploring Active Directory infrastructure to identify key threats and establish best practices for keeping data safe. Attend this month’s webinar to learn more.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

This is a walkthrough guide I wrote whilst upgrading my on-premise MS Dynamics CRM 3.0 deployment to 4.0. This covers the actual installation of the product to a working level for my system, I ran into a lot of issues that the steps below fixed so h…
On Sep 22nd 2014 Microsoft released Update Rollup 1 for Microsoft Dynamics CRM 2013 Service Pack 1 and back in July Update Rollup 3 was released.  So we now have:   Update Rollup 1Update Rollup 2Update Rollup 3Service Pack 1Update Rollup 1 for S…
Along with being a a promotional video for my three-day Annielytics Dashboard Seminor, this Micro Tutorial is an intro to Google Analytics API data.
This Micro Tutorial demonstrates using Microsoft Excel pivot tables, how to reverse engineer competitors' marketing strategies through backlinks.

867 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

15 Experts available now in Live!

Get 1:1 Help Now