locked
additional security to CRM 4.0 RRS feed

  • Question

  • hi,

    We have installed and deployed Microsoft CRM 4.0 with IFD. CRM works fine without any problem.

    we are using certificate.

    the IT manager feels that security with only user name and password is not enough

    We have been requested to search for addition security model can be applied to CRM.

    My question is what other security options can we add to CRM (ex. Additional authentication,..)?

    Thanks

    Marwa

     

    Thursday, October 28, 2010 1:32 PM

Answers

  • I've not yet implemented two-factor authentication with CRM, but I've investigated it on behalf of a customer.

    The general scenario I'd suggest is to implement a two-factor authentication solution that supports AD. Any connections from the Internet would have to be authenticated by the two-factor authentication server (i.e. the user would only be able to connect via the two-factor authentication server). Once authenticated, they would connect to the CRM server with the AD credentials that had been authenticated. In this scenario you don't use IFD at all in CRM


    Microsoft CRM MVP - http://mscrmuk.blogspot.com  http://www.excitation.co.uk
    • Marked as answer by Marwa saleh Tuesday, November 2, 2010 3:56 PM
    Friday, October 29, 2010 10:02 AM
    Moderator

All replies

  • Out of the box, CRM 4.0 don't support any security option other than forms based(Which we are using currently) for IFD.

    In CRM 2011, you can use Claim based Authentication.

     


    Jai Ho CRM http://mscrmkb.blogspot.com Skype - amol.gholap

    Mark as answer if a post has answered the question
    Thursday, October 28, 2010 1:39 PM
  • The main additional security option would be to use two-factor authentication. I don't believe this can be easily integrated with IFD (though could be used with it, though users would have to logon twice), but it can be integrated with AD authentication. Several vendors provide two-factor authentication technologies


    Microsoft CRM MVP - http://mscrmuk.blogspot.com  http://www.excitation.co.uk
    Thursday, October 28, 2010 1:50 PM
    Moderator
  • Hi David,

    thank you for your replay. Can you explain more how did you implement the two factor with crm AD authintication

    and Would it require in configuration in crm enviroment?

    Thanks

    Marwa

    Thursday, October 28, 2010 2:26 PM
  • I've not yet implemented two-factor authentication with CRM, but I've investigated it on behalf of a customer.

    The general scenario I'd suggest is to implement a two-factor authentication solution that supports AD. Any connections from the Internet would have to be authenticated by the two-factor authentication server (i.e. the user would only be able to connect via the two-factor authentication server). Once authenticated, they would connect to the CRM server with the AD credentials that had been authenticated. In this scenario you don't use IFD at all in CRM


    Microsoft CRM MVP - http://mscrmuk.blogspot.com  http://www.excitation.co.uk
    • Marked as answer by Marwa saleh Tuesday, November 2, 2010 3:56 PM
    Friday, October 29, 2010 10:02 AM
    Moderator