Personalized Community is here!
Quickly customize your community to find the content you seek.
Have questions on moving to the cloud? Visit the Dynamics 365 Migration Community today! Microsoft’s extensive network of Dynamics AX and Dynamics CRM experts can help.
2022 Release Wave 2Check out the latest updates and new features of Dynamics 365 released from October 2022 through March 2023
The FastTrack program is designed to help you accelerate your Dynamics 365 deployment with confidence.
FastTrack Community | FastTrack Program | Finance and Operations TechTalks | Customer Engagement TechTalks | Upcoming TechTalks | All TechTalks
I'm going to check some features of the current existing mobile companion apps .
Does the ACS Service BUS in Azure need to communicate with the ADFS Server (ADFS Server must be visible), or is it sufficient that the ADFS server is only visible/reachable to the Mobile Apps? Maybe in an internal network.
Is it sufficient to copy the FederationMetadata.xml the the ACS / WS-Federation Identity Provider - specifying File for metadata, or does the ACS try to reach the ADFS?
In Short: Is it required to expose the ADFS to internet, or can I setup an internal ADFS using some self signed certificate for test purposes - running, of cource, only local mobile clients (within intranet IP Range) - naturally with Internet access to the servicebus namespace in Azure. Will this work?
Any hints appreciated
Have a look at the solution demo page on Customersource/Partnersource. There is a how-to guide to setup a demo for the companion apps.
Usually the ADFS is published to the internet. When looking at the architecture, theoretically ADFS could run internally and only a trust is setup by e.g. the FederationMetadata.xml. But I'm not sure.
At one customer we were able to use a self-signed certificate for the Win8 desktop users, but e.g. Android did not connect due to this certificate not being trusted. So it is really recommended to use a SSL certificate provided by a public certificate authority. A wildcard certificate is not working. A certificate for the demo can also be found on the Solution demo page.
thanks for this information. I am going to adapt the information given for a non contoso internal test environment. As you mentioned, theoretically it should work.
And many thanks for the hint with the self-signed certificate. So I'm not going to even try this with the mobile apps.
Let's see if it will work.
Business Applications communities