locked
Authentication method CRM 4.0 uses with 2 forests/domains (RetreiveADUserProperties) RRS feed

  • Question

  •  

    Hello All,

     

    A customer has 2 forests, both with 1 domain (I'll refer to them as domain A(in forest F1) and domain B(in forest F2).

     

    There is 1-way trust from A to B  (A trusts B)

    There is a firewall in between A and B.

     

    CRM 4.0 RTM installed in domain A on a member server (CRM4SRV)

    I can add users from domain B to a local group on CRM4SRV in domain A, but I cannot add users from domain B to CRM??

     

    I think it is because of the firewall, but I want to be sure that I got my facts correct.

    To know for sure I would like to know HOW Microsoft CRM authenticates to AD ??? Does it use the Application Pool Account (Identity), Computer Account (CRM4SRV$), User Account (A\CRMadmin) loged in to CRM, kerberos...

     

    I tried fiddler to snif some packets, but I don't understand the output of it. (The computer account is mentioned in the AUTH method)

     

    Any help would great!

     

    Thank you

     

    Remon

    Monday, February 25, 2008 4:10 PM

Answers

  •  

    If you use CRM 4.0 enterprise license, then might be you can use one user with two different orgnaization. But i am afraid, you can check with implementation guide.

     

    Regards,

    Imran

     

    http://microsoftcrm3.blogspot.com

     

    Monday, February 25, 2008 4:32 PM
    Moderator