Posts

Showing posts from November, 2014

Configure ADFS, Claim-Based Authentication and IFD for MS CRM 2013

Limitation of Active Directory Federation Services (ADFS) 1.         ADFS requires default website & default port like port 80 & 443. On the server where you are going to install & configure ADFS, port no 80 & 443 should be available. 2.         When Claim is enabled HTTPS must be used both for internal & external. You need wild card certificate for Claim-Based Authentication & IFD DNS Configuration You need to create at least 5 host name in DC: Forward Lookup Zone (For DNS Resolution) 1.         ADFS 2.0 URL (External Domain :  adfs2. mydomain.com  : https://adfs2.contoso.com/FederationMetadata/2007-06/FederationMetadata.xml) 2.         CRM Server IFD URL (CRM IFD Federation endpoint, e.g.  crmauth.mydomain.com ) 3.         CRM Discovery Service endpoint ( crmdiscovery.mydomain.com ) 4.         CRM Org URL ( myOrg1.mydomain.com ) 5.         Internal URL to access the CRM (CRM Claims Federation endpoint,  internalCRM.mydomain.com ) Install ADFS on CRM server or