locked
Performance Issues - NTLM Auth, 401.2 Responses RRS feed

  • Question

  • I am new to dynamics and I am trying to investigate some performance issues. 

    My current client has an overnight job that imports large amounts of data to crm. I have noticed that when the SSIS package makes a call to the crm web services to perform a crud operation that it always receives a 401.2 response.
    I understand that this is a typical NTLM handshake however does this need to happen everytime, should the connection not be reused and the auth credentials cached? 
    Does this mean that kerberos is failing? 
    If we are defaulting to NTLM does it mean that we are missing an SPN for the domain account that the CRM web application app pool is running under?

    Often there is a data exchange of thousands of records and this can take > 24 hours to complete. I am sure if I can remove most of these auth calls then the process would speed up. I am not saying this is the root cause however it is just one step of many I am investigating to try and improve this install. 

    Thanks
    Sunday, January 3, 2010 8:48 AM

Answers

All replies

  • I am new to dynamics and I am trying to investigate some performance issues. My current client has an overnight job that imports large amounts of data to crm. I have noticed that when the SSIS package makes a call to the crm web services to perform a crud operation that it always receives a 401.2 response. I understand that this is a typical NTLM handshake however does this need to happen everytime, should the connection not be reused and the auth credentials cached?

    Often there is a data exchange of thousands of records and this can take > 24 hours to complete. I am sure if I can remove most of these auth calls then the process would speed up. I am not saying this is the root cause however it is just one step of many I am investigating to try and improve this install. 

    Thanks
    Thursday, December 31, 2009 1:36 AM
  • How is the SSIS package calling the CRM web services ? If it uses .Net code - either directly in SQL 2008 as described at http://blogs.msdn.com/crm/archive/2009/12/31/data-integration-migration-using-sql-integration-services-ssis-2008.aspx, or via a custom SSIS destination component (as we use) - then the authentication behaviour is controlled by the PreAuthenticate and UnsafeAuthenticatedConnectionSharing properties of the CrmService proxy instance.

    By default these are false; if set to true then the connection will be reused without re-Authentication
    Microsoft CRM MVP - http://mscrmuk.blogspot.com  http://www.excitation.co.uk
    Monday, January 4, 2010 3:24 PM
    Moderator