Dynamics CRM 2013 Claim Based Authentication & IFD Configuration Tips

During this time I want to do some libs about claim based authentication mechanism in Dynamics CRM 2013. Generally developer does not need to cover this knowledge, developers only need to know how to use the mechanism to design a security system.

To complete this task, I spent lots of time on it because of I configured it using some third party blogs instead of authority documents. Those blogs' configuration environment did not meet my situation so I encountered many strange issues. To void it is happened again, I would like to show my experiences to you gus.

My Lab Environment as following:

AD + Dynamics CRM 2013: Windows Server 2012 R2 (Machine 1)

ADFS: Windows Server 2012 R2 (Machine 2)

Configuration Steps:

1. Install Active Directory Certification Application on Machine 1

2. Apply a domain certification on Machine 1, please mind that the common name of the certification should be wildcard format e.g. *.dynamics.local.

3. Setup Dynamics CRM to support SSL binding in IIS using applied certification, and Modify related settings in Dynamics CRM Deployment Management.

4. Install certification applied on step 2 into Machine 2, and configure ADFS settings on it. (you can get more detail in white paper)

5. Setup DNS rules in Machine 1. (you can get more detail in white paper)

6. Enable Dynamics CRM Claim Based Authentication in Dynamics CRM Deployment Management.

7. Configure ADFS settings. (you can get more detail in white paper)

8.Enable Dynamics CRM IFD  in Dynamics CRM Deployment Management.

9.Done.

IFD Configuration White Paper