Share
Report*This post is locked for comments
You’re offline. This is a read only version of the page.
*This post is locked for comments
I can ping that address from the CRM/ADFS server and it replies back with our external ip address.
Oh, I see. That sounds like a DNS issue. Have you confirmed that your server recognizes crm2016.externaldomain.com on the internal domain? It sounds like it's redirecting because it doesn't know what do to with that URL.
Wayne,
Thank you for the quick reply. I understand that having both roles on the same server is not ideal and that the CRM server should not be on the edge. We have decided to go with this set up as we do not have enough machines to separate the roles.
I am not sure if I explained it correctly above, but I am not trying to change the port on the ADFS or CRM service. They are working correctly on the ports assigned to them. ADFS is running on 443 and CRM on 444. The part that is not working for me is that when we browse to our external link for CRM we get immediately redirected to ADFS for authentication, which is the correct behavior, but the link that we get redirected to is missing the subdomain part. So we are being redirected here: externaldomain.com/.../ls… instead of here crm2016.externaldomain.com/.../ls… to authenticate. I can successfully access CRM once I authenticate with the modified link.
The link above is what I am trying to figure out how to modify so that I don't have to manually add crm2016 in front of it.
I also tried the commands on the link you reffered, but it seems to work only on changing the port number and not the url.
Thank you,
Endri.
first off, you really don't want CRM and ADFS installed on the same server. That somewhat defeats the purpose of having a secure gateway at all, if your CRM server is sitting on the edge of your network.
Ideally, you would have your ADFS and your CRM server on your internal network, and then an ADFS bridge in your DMZ (and maybe a CRM front-end server).
Also, ADFS 3.0 doesn't support custom ports, so your setup will never work. You will have to go the other way around with CRM running on port 444
See here for specifics: www.inogic.com/.../how-to-change-the-port-of-adfs-3-0-windows-server-2012-r2-to-444
Stay up to date on forum activity by subscribing. You can also customize your in-app and email Notification settings across all subscriptions.
#1
André Arnaud de Cal...
291,280
Super User 2024 Season 2
#2
Martin Dráb
230,235
Most Valuable Professional
#3
nmaenpaa
101,156
All responses (
Answers (
Hello,
I have installed CRM 2016 (using the instructions here http://www.interactivewebs.com/blog/index.php/crm/how-to-set-up-microsoft-crm-2016-ifd-on-windows-2012-r2-server/comment-page-1/#comment-85847) on premise and all the latest updates but have hit a snag when I go to my IFD site https://crm2016.externaldomain.com:444 it redirects me to https://externaldomain.com/adfs/ls/?wa=wsignin…. That brings a “page cannot be found” as the correct link. If I add crm2016 to the beginning of that link making it https://crm2016.externaldomain.com/adfs/ls/?wa=wsignin… then I am presented with the login page for ADFS and I can successfully log in. We use externaldomin.com:443 for other traffic and cannot route ssl traffic to our crm2016/adfs server.
Any ideas where I can make the change so that I am redirected to the right link?
(Internal domain name is different than external domain
CRM and ADFS are installed on the same Windows 2016 server)
Thank you,
Endri.