Dear all,
We are trying to setup IFD for MS Dynamics CRM 2015 on-premises without any success.
We verified multiple times the configurations did so far and we are really out of ideas.
In short, we have this situation and this errors:
DC : Windows Server 2012 R2 Standard
ADFS + CRM : Windows Server 2012 R2 Standard
ADFS:
- Installed ADFS Server Role with service account ( domain admin )
- 2 "A" host for this Environment pointing to the same IP address : adfs, sts1 ( .domain.com )
- Installed Wildcard certificate from public autority (not self signed)
- SPN set for host/adfs , http/adfs, http/adfs.domain.com , host/sts1, http/sts1, http/sts1.domain.com for the installation service account.
- Testing the adfs and sts1 links with /adfs/ls/idpinitiatedsignon worked fine, the user can authenticate perfectly.
CRM:
- Checked the federation metadata xml for adfs.domain.com - works fine
- Checked the federation metadata xml for sts1.domain.com - works fine
- CRM is configured for HTTPS with Wildcard binding
- Configured Claims Based Security for CRM as in the manual and error ID 364 was raised in event viewer AD FS Admin, with MSIS7001
- Configured IFD for CRM : error ID 364 with MSIS7001
- For configuring Claim Based Security and IFD we used the “classic” "A" DNS Records : internalcrm, crm ( for organization ), auth, dev
- All the configuration are made like in Microsoft tutorial -> http://www.microsoft.com/en-us/download/details.aspx?id=41701
Please advice, thank you,
Lorena