locked
Claim based authentication - CRM 2011 RRS feed

  • Question

  • Hi,

        I need to configure claim based authentication for CRM 2011.Kindly provide the necessary steps to do this.

     

    Thanks in advance,

    Jeriesh


    Cheers : Jeriesh
    Tuesday, June 21, 2011 2:52 PM

All replies

  • Hi Jeriesh.

    Please follow the steps from White Paper: Microsoft Dynamics CRM 2011 Configuring Claims-based Authentication.

    http://blogs.msdn.com/b/crm/archive/2011/02/22/white-paper-microsoft-dynamics-crm-2011-configuring-claims-based-authentication.aspx

    http://blogs.msdn.com/b/crm/archive/2011/01/13/configuring-ifd-with-microsoft-dynamics-crm-2011.aspx

    When it comes to certificate:

    If you are using self-signed certificate, then download makecert,exe tool and run this syntax to create certificate.

     

    makecert.exe -r -pe -n "CN=*.domain.com, CN=*.domain.com" -b 01/01/2009 -e 01/01/2050 -eku 1.3.6.1.5.5.7.3.1 -ss my -sr localMachine -sky exchange -sp "Microsoft RSA SChannel Cryptographic Provider" -sy 12

     

    If your both internal and external domains are same then you can use the above syntax.

    if it is different you have to create a forward lookup zone in your Internal DNS server and you have to create all the host names in that zone.

    If you are purchasing certificate from third party providers then you can get wildcard certificate or 5 sub domain certificate.

     

    Please let me know if you have any questions regarding IFD for CRM2011.

     

    Regards,


    Khaja Mohiddin
    Tuesday, June 21, 2011 11:28 PM
  •  Hi,

         I need to install the AD FS 2.0 in ADS Server or in the CRM server.Actually i need to Install CRM 2011 in Datacenter and from there i need to provide access to clients of different organization. Kindly, suggest me to obtain this.

    Thanks in advance,

    Jeriesh


    Cheers : Jeriesh
    Wednesday, June 22, 2011 7:41 AM
  • Hi,

    You can install ADFS 2.0 in CRM or ADS Machine.

    CRM is installed on which port?


    Khaja Mohiddin
    Wednesday, June 22, 2011 8:23 AM
  • Hi,

         For me now crm url is working on both http(http:\\hostname\crm) & https(https:\\hostname\crm) i have did some changes to make the http url to https in CRM Deployment Properties --> properties --> web address --> i change http to https and in advance tab i enabled NLB ssl header (https:\\hostname\crm).After this my crm is working on both http and https.

    Thanks in advance,

    Jeriesh


    Cheers : Jeriesh
    Wednesday, June 22, 2011 8:51 AM
  • Are you looking to configure IFD for CRM2011 or just to use https for CRM??

    if you configure IFD then you are going to use only https.

    Install the ADFS and follow the steps from the claimbased authentication whitepaper.

     

    regards,


    Khaja Mohiddin
    Wednesday, June 22, 2011 9:16 AM
  • Hi,

    i need to Install CRM 2011 in Datacenter and from there i need to provide access to clients of different organization.in this case what i need to do?

     

    Thanks In Advance,

    Jeriesh


    Cheers : Jeriesh
    Wednesday, June 22, 2011 9:40 AM
  • Hi Jeriesh,

    First go ahead and install CRM2011 on datacenter and Configure IFD on the same machine or some other machine.

    Create users and provide access to the users.

     

    regards,


    Khaja Mohiddin
    Wednesday, June 22, 2011 10:48 AM