CRM Security updates

(0) Share

Report

Posted on by TheGoodDBA

235

We are running CRM 2016 OnPrem on Windows Server 2012R2. Windows itself is kept up to date on security patches and fixes that Microsoft provides. I am being asked by our infrastructure security team if Microsoft provides any level of security updates/patches for CRM 2016 itself. We are on version 8.1.0000.0359 I do not see anything related specifically to security updates for the application, but I believe there are application updates that exist (Update1, SP1.1). Do these updates plug security holes in the application? I did not see anything specific to security in the update fix list.

Thanks,

Steve

I have the same question (0)

All responses (1)

Answers (1)

Verified answer

Ricardo Gimenez on at

Like (1)

Report

RE: CRM Security updates

Hi Steve,

Usually the Update Rollups for CRM provide fixes at product level for bugs or even improvements about functionalities. If you don't see any item about security in the update describe list, there was not security corrections. Since you are using an On Premise environment, the security concerns are more related to other infrastructure components that CRM needs to work (like AD, SQL, Reporting, firewall rules between internal servers, etc).

Talking about CRM, there is a White Paper that cover security items at application level (configuration and internal security model).

Please check: docs.microsoft.com/.../security-concepts

www.microsoft.com/.../details.aspx

Scalable Security Modeling with Microsoft Dynamics CRM 2015.pdf

also, any security breach about MS products can be reported here:

www.microsoft.com/.../faqs-report-an-issue

I hope that content above can provide some guidance about your concerns.

Thanks,

Was this reply helpful? Yes No