Remove From My Forums

CRM online federation with company Forest

Question
0

Sign in to vote

How do I configure CRM Online to allow federation with ADFS? I want to be able to log in to CRM Online 2011 with AD credentials for single sign on

Is it similar to Office 365? I have a Windows 2003 Forest/domain, do I need to install Windows 2008 ADFS?
Celtic

Monday, January 16, 2012 5:56 PM

Answers

1

Sign in to vote
There are a couple options now it seems. MSFT has said that as of last November or December they would start on-boarding people on a case by case basis to use AD federation. Call their support number to inquire about that.

877-276-2464

Otherwise I have heard rumor you can set this up using Azure ACS also.
Jamie Miley
Check out my about.me profile!
http://mileyja.blogspot.com
Linked-In Profile
Follow Me on Twitter!
- Proposed as answer by nrodri Monday, January 16, 2012 7:53 PM
- Marked as answer by Jamie MileyModerator Sunday, April 1, 2012 8:24 PM
Monday, January 16, 2012 6:11 PM

Moderator
1

Sign in to vote
We've been hard at work making CRM Online an add-on available in Office 365, and one of the big benefits is the ability to sign in using AD credentials with ADFS. With CRM Online hooked up to Office 365, setting up single sign on will be the same for CRM as for any other Office 365 property.

You will need ADFS 2.0 (the Windows Server 2008 version). I recommend running the Office 365 Deployment Readiness Tool and checking out their Prepare for Directory Synchronization guide:

Deployment readiness tool: http://community.office365.com/en-us/f/183/p/2285/8155.aspx#8155

Guide to syncing Active Directory: http://onlinehelp.microsoft.com/en-us/office365-enterprises/ff652544.aspx

I'd also recommend a free trial of Office 365. If your users and authentication are working with Office 365 now, they'll work the same in your CRM Online organization when you are migrated to Office 365.

http://www.microsoft.com/en-us/office365

Cheers,

David
- Marked as answer by Jamie MileyModerator Sunday, April 1, 2012 8:24 PM
Monday, January 16, 2012 9:15 PM
1

Sign in to vote
Yep, if you have your federation server working with Office 365, it'll work just fine with CRM Online.

CRM Online for Office 365 is actually available now if you sign up for an enterprise (E-plan) offer here:

http://www.microsoft.com/en-us/office365/free-office365-trial.aspx?WT.z_O365_ca=Try_online-software-Simp_en-us#fbid=hMIutI_SXyV

We don't yet have a free trial of CRM Online for Office 365, nor do we yet support migrating your existing CRM Online organizations to Office 365.
- Marked as answer by Jamie MileyModerator Sunday, April 1, 2012 8:23 PM
Tuesday, January 17, 2012 2:42 AM
1

Sign in to vote
Sure, the deployment guide here will help you get directory synchronization set up between ADFS and Office 365: http://onlinehelp.microsoft.com/en-us/office365-enterprises/ff652544.aspx

Yes, Windows NLB is supported for creating an ADFS farm. You can read more about it here: http://technet.microsoft.com/en-us/library/cc780492(WS.10).aspx
- Proposed as answer by Jamie MileyModerator Monday, January 30, 2012 11:56 PM
- Marked as answer by Jamie MileyModerator Sunday, April 1, 2012 8:23 PM
Monday, January 30, 2012 11:34 PM

All replies

1

Sign in to vote
There are a couple options now it seems. MSFT has said that as of last November or December they would start on-boarding people on a case by case basis to use AD federation. Call their support number to inquire about that.

877-276-2464

Otherwise I have heard rumor you can set this up using Azure ACS also.
Jamie Miley
Check out my about.me profile!
http://mileyja.blogspot.com
Linked-In Profile
Follow Me on Twitter!
- Proposed as answer by nrodri Monday, January 16, 2012 7:53 PM
- Marked as answer by Jamie MileyModerator Sunday, April 1, 2012 8:24 PM
Monday, January 16, 2012 6:11 PM

Moderator
1

Sign in to vote
We've been hard at work making CRM Online an add-on available in Office 365, and one of the big benefits is the ability to sign in using AD credentials with ADFS. With CRM Online hooked up to Office 365, setting up single sign on will be the same for CRM as for any other Office 365 property.

You will need ADFS 2.0 (the Windows Server 2008 version). I recommend running the Office 365 Deployment Readiness Tool and checking out their Prepare for Directory Synchronization guide:

Deployment readiness tool: http://community.office365.com/en-us/f/183/p/2285/8155.aspx#8155

Guide to syncing Active Directory: http://onlinehelp.microsoft.com/en-us/office365-enterprises/ff652544.aspx

I'd also recommend a free trial of Office 365. If your users and authentication are working with Office 365 now, they'll work the same in your CRM Online organization when you are migrated to Office 365.

http://www.microsoft.com/en-us/office365

Cheers,

David
- Marked as answer by Jamie MileyModerator Sunday, April 1, 2012 8:24 PM
Monday, January 16, 2012 9:15 PM
0

Sign in to vote

Hi David,

So are you saying that CRM online is not ready yet, but if I setup my federation server with same setup as Office 365 that CRM online will work once it has been added to the Office 365 suite??
Celtic

Monday, January 16, 2012 9:21 PM
1

Sign in to vote
Yep, if you have your federation server working with Office 365, it'll work just fine with CRM Online.

CRM Online for Office 365 is actually available now if you sign up for an enterprise (E-plan) offer here:

http://www.microsoft.com/en-us/office365/free-office365-trial.aspx?WT.z_O365_ca=Try_online-software-Simp_en-us#fbid=hMIutI_SXyV

We don't yet have a free trial of CRM Online for Office 365, nor do we yet support migrating your existing CRM Online organizations to Office 365.
- Marked as answer by Jamie MileyModerator Sunday, April 1, 2012 8:23 PM
Tuesday, January 17, 2012 2:42 AM
0

Sign in to vote

Thanks David for the helpful info

Could you point me to useful deployment doc for ADFS with Office 365. Also is Windows NLB supported for creating a two server ADFS farm?
Celtic

Wednesday, January 18, 2012 12:39 PM
1

Sign in to vote
Sure, the deployment guide here will help you get directory synchronization set up between ADFS and Office 365: http://onlinehelp.microsoft.com/en-us/office365-enterprises/ff652544.aspx

Yes, Windows NLB is supported for creating an ADFS farm. You can read more about it here: http://technet.microsoft.com/en-us/library/cc780492(WS.10).aspx
- Proposed as answer by Jamie MileyModerator Monday, January 30, 2012 11:56 PM
- Marked as answer by Jamie MileyModerator Sunday, April 1, 2012 8:23 PM
Monday, January 30, 2012 11:34 PM
0

Sign in to vote

Thanks David
Celtic

Tuesday, January 31, 2012 9:26 AM
0

Sign in to vote
David,

I am trying to migrate my existing CRM Online organization to my existing Office 365 organization - which uses ADFS. Is there any chance that these two systems can use the same Authentication Provider in the future? In January you said that you do not yet support a migration - do you support a migration now?

If not, is there a way to migrate the existing CRM Online organization to a newly created organization created inside Office 365?

Cheers
Robert

Robert Draeger - Layer2 http://www.layer2.de
- Edited by Robert Dräger Friday, June 15, 2012 12:30 PM
Friday, June 15, 2012 12:29 PM
0

Sign in to vote

Robert,

We do indeed now support migration from existing Windows Live ID-based CRM Online organizations to new Office 365 organizations. This is a one-way journey that will convert your existing organization to fully use Office 365, including support for ADFS. During the process, you'll provide the support team with a CSV file mapping your existing Windows Live ID user names to matching Office 365 users. Contact the support team once you're ready to begin the process.

If you have an already existing Office 365-based CRM organization and you want to migrate data into it yourself, you'll need to use a mixture of Office 365's bulk user creation, CRM's import/export functionality, and possibly CRM SDK calls.

Regards,

David

Thursday, June 21, 2012 10:51 PM

Answered by:

CRM online federation with company Forest

Question

Answers

All replies