Hi
I am setting up internal claims based authentication. Scenario is we have premise CRM 2013 installed on multiple Azure VMs in domain AAA. We have a VPN to a site in our offices with domain BBB. ADFS is set up in our offices. We've got appropriate certificates
and have been able to set up ADFS, claims based authentication and all the claim rule/relying party stuff. It all looks fine as far as we can see.
But when we create a new user in CRM called BBB\username it fails to connect and get the firstname/last name and gives an error if we save saying domain not reachable. Enabling tracing on CRM shows a message
Unable to get DNS name of domain BBB: System.Net.Sockets.SocketException (0x80004005): No such host is known
So CRM appears not to know that it needs to go via ADFS to get the domain data for users in domain BBB.
I've set up quite a few instances of CRM and IFD, but not in this exact configuration. Any ideas? I'm wondering if it needs some sort of SPN or a DNS entry.
I've simplified the situation a little - ie are using SSD offloading and load balancing, but these are not relevant I think. CRM continues to work within the server group
Thanks
Paul