Consuming CRM Webservice through external application - how to secure the connection RRS feed

  • Question

  • Hi,

    We have CRM 4.0 on premise deployment.  I have a current scenario where in web portal is accessing crm webservice.  We have a content management server that is outside our firewall.  The web.config file is in the web server that is not part of our domain.  We have opened a port to access the crm webservice.  If the application is using https access, is it sufficient? Should I have to do a Internet Facing Deployment of CRM or can I setup in the IIS port 443 for https access and leave prot 80 for http access.  Thanks for your help. 


    Friday, July 29, 2011 10:56 AM


  • HI,

    Having Https is enough securing the data transmitted over internet and form based authentication is not required. If you have to only access the few CRM services subset i.e. few methods  like Create Account, Retrieve Account etc then i would suggest you to create a WCF webservice that will interact with CRM webservice instead of exposing the CRM services (all CRM) to internet.

    *If you users are only accessing CRM from company network then you should not have to expose CRM system to internet.

    Jehanzeb Javeed

    Linked-In Profile |CodePlex Profile

    If you find this post helpful then please "Vote as Helpful" and "Mark As Answer".
    • Proposed as answer by Jehanzeb.Javeed Sunday, July 31, 2011 4:54 PM
    • Marked as answer by SN_NJ Monday, August 1, 2011 12:45 PM
    Sunday, July 31, 2011 4:53 PM