locked
CRM 2011 ADFS Configuring RRS feed

  • Question

  • Hi Guys ,

    I am trying to practice ADFS installation at home. What I have a VM setup on my PC with the following components

    • Windows 2008 r2
    • SQL Server 2008
    • Active Directory
    • SharePoint
    • CRM 2011 (Port 5555)
    • Dyn DNS Publisher ( Publishes my ISP IP to Dyn DNS)

    I am planning to create 4 self-signed certificates generated from IIS 7. From what I have read my understanding is ADFS 2.0  uses Port 80. I haven’t used Port 80 on any of my application . However since I use a domestic Cable  ISP  Port 80 is blocked by ISP .  Is it possible to configure ADFS on a different . I assume if I do that the URL will look like

    www.crmorg.mydomain.com:portnumber

    Is this a possible approach and are there any other facts I need to take into account

    Wednesday, June 27, 2012 10:49 PM

Answers

  • If you're configuring CRM for Claims-based authentication, by default, ADFS and the CRM will actually use port 443 (standard HTTPS port), as HTTP is not supported - in fact, you may use only one HTTPS binding for the CRM Web Application.  If ADFS and CRM are co-located on the same single-NIC machine, they must use different ports.

    In other words, you can use any port you want (firewall, ISP, infrastructure allowing) but both the ADFS and CRM Web Applications must be configured for HTTPS (hence the SSL certificates).

    Our hosted CRM for instance is configured thus:

    • https://adfs.domain.com.au:444
    • https://org.domain.com.au

    where CRM is on standard 443 and ADFS on non-standard 444.


    --pogo (pat) @ pogo69.wordpress.com

    Wednesday, June 27, 2012 11:31 PM