locked
DNS Configuration RRS feed

  • Question

  • According to "MS CRM 2011 and Claims-based Authentication.doc" I need to create a forward lookup zone in DNS and define various DNS records. We have our domain registered and our company website hosted through a 3rd party. we created DNS records through them for

    sts.[domain].com, auth.[domain].com, dev.[domain].com, crm.[domain].com, [domain].[domain].com

    All of the above point to the IP of our CRM 2011 on-premise server which is located at our company.

    Considering the above

    1) do I still need to setup this forward lookup zone and DNS records on our CRM server?
    2) do I also need to add records for internalcrm.[domain].com, orgname.[domain].com, and orgname.subdm.[domain].com?

    Thursday, March 1, 2012 8:12 AM

All replies

  • Hi,

    I think you should do that,

    when you set up the claims based authentication - you are required to input those addresses and they need to be available from within the domain.

    Good luck

    • Proposed as answer by Assaf Lev Thursday, March 1, 2012 9:39 AM
    Thursday, March 1, 2012 9:38 AM
  • Hi,

    Yes, if you dont create you will get DNS and 404 error to make a redirection.

    Regards,


    Khaja Mohiddin http://www.dynamicsexchange.com/ http://about.me/KhajaMohiddin

    Thursday, March 1, 2012 11:40 AM
  • Thanks. I watched the video at http://www.youtube.com/watch?v=ZD5qaa-G99E&feature=player_embedded again. In this video they only setup DNS entries for

    1) auth, dev, internalcrm, adfs, awc

    The documentation mentioned earlier also asks to setup entries for

    2) crm, [domain], orgname, orgname.subm

    That leads to the following questions:

    a) Do I not need the ones in 2)?

    b) In 2) are orgname and subm place holders or are these actual suggested names?

    c) As mentioned earlier we also have DNS entries for auth and dev on our domain host (GoDaddy). Do I need those both on GoDaddy and on our CRM/ADFS server?

    d) On GoDaddy we also have entries for sts, crm, [domain]. Are these needed at all and if so only on GoDaddy or also on our server?

    e) internalcrm, orgname, orgname.subm, adfs, and awc are not on GoDaddy. Do I need to add entries for those on GoDaddy?

    f) What is awc?

    Thursday, March 1, 2012 4:22 PM
  • Hi,

    You need to create four entries in GoDaddy which points to your CRM Server.

    1. ADFS

    2. AUTH

    3. DEV

    4. CRMOrgaName(YourOrgName)

    If you have multiple organizations then you need to create the multiple org entries in GoDaddy.

    And these four entries will be created in your DNS Server with "interncrm" entry. interncrm is for your Internal Access.

    We can name adfs as sts, awc and anything we want.

    So neglect the awc and continue with the configuration.

    Regards,


    Khaja Mohiddin
    http://www.dynamicsexchange.com
    http://about.me/KhajaMohiddin

    • Proposed as answer by Khaja Mohiddin Tuesday, March 13, 2012 4:23 PM
    Thursday, March 1, 2012 4:53 PM
  • Thanks. After watching sections of the video a few more times it seems and checking on other things I believe:

    * I believe CRMOrgaName is awc in the video. This is what will be used for external access. I don't know what awc stands for but crm seems like a good name to me. Then you would access it from outside at crm.[domain].com. Is there a reason why I should not use crm instead?

    * adfs and sts are equivalent. In the documentation they use sts. In the video they use adfs.

    * interncrm is for the URL to access CRM internally. So you would go to interncrm.[domain].com

    STS = Security Token Service
    AD FS = Active Directory Federation Services

    Thursday, March 1, 2012 6:26 PM
  • Hi,

    It will be the Organization name.

    If the org name is CRM then you have to create dns entry as CRM.

    or if you want to create organization name as awc or anyother.. you need to create that dns entry.

    Regards,


    Khaja Mohiddin
    http://www.dynamicsexchange.com
    http://about.me/KhajaMohiddin

    Thursday, March 1, 2012 7:13 PM
  • Hi,

    Did you resolve this issue?

    Regards,


    Khaja Mohiddin
    http://www.dynamicsexchange.com
    http://about.me/KhajaMohiddin

    Thursday, March 8, 2012 1:44 AM