I have the following set up on CRM 2013
| Server |
URLs |
| CRM |
crm.<domain.com>
dev.<domain.com>
auth.<domain.com>
|
| AD |
adfs.<domain.com> |
internal DNS is set up to resolve the external domain internally (forward lookup zone) and allows access via crm client internally and web internally.
Externally I can access CRM without issue through the web browser over https, however when I try to configure the crm outlook client for external users (i.e. non domain computers) I get a failure. Inspecting the log file I can see an authentication failure on https://crm.<domain.com>/XRMServices/2011/discovery.svc
I tried allowing unauthenticated access to the XRMServices folder through IIS but then discovered an Authentication Required error in the log file.
I assume the issue is with accessing the components with a non-domain user account initially as computers that are members of the domain work fine.
Is there any way to resolve this issue?
CRM configuration log
==============================================================
08:36:52| Info| Configuration file Type : OnPremise.
08:36:52|Verbose| Method entry: Microsoft.Crm.Application.Outlook.Config.ConfigInfo.ConfigInfo
08:36:52|Verbose| Method entry: Microsoft.Crm.Application.Outlook.Config.OutlookCRMDatastoreInstaller.GetAllCRMOrgsInOutlookProfile
08:36:52| Info| Logon mapi store
08:36:52| Info| Logon admin service
08:36:52|Verbose| Method entry: Microsoft.Crm.Application.Outlook.Config.OutlookCRMDatastoreInstaller.GetServiceIds
08:36:52| Info| Query all rows in msg service table
08:36:52|Verbose| Method exit: Microsoft.Crm.Application.Outlook.Config.OutlookCRMDatastoreInstaller.GetServiceIds
08:36:52|Verbose| Method entry: Microsoft.Crm.Application.Outlook.Config.ConfigInfo.CleanUpDatastoreIfNeeded
08:36:52|Verbose| Method exit: Microsoft.Crm.Application.Outlook.Config.ConfigInfo.CleanUpDatastoreIfNeeded
08:36:52|Verbose| Method exit: Microsoft.Crm.Application.Outlook.Config.ConfigInfo.ConfigInfo
08:36:52|Verbose| Method entry: Microsoft.Crm.Application.Outlook.Config.ServerForm.ServerForm
08:36:52|Verbose| Method exit: Microsoft.Crm.Application.Outlook.Config.ServerForm.ServerForm
08:36:53|Verbose| Method entry: Microsoft.Crm.Application.Outlook.Config.ServerForm.SetUIData
08:36:53|Verbose| Method exit: Microsoft.Crm.Application.Outlook.Config.ServerForm.LoadAvailableUrls
08:36:53|Verbose| Method exit: Microsoft.Crm.Application.Outlook.Config.ServerForm.LoadAvailableUrls
08:36:53|Verbose| Method exit: Microsoft.Crm.Application.Outlook.Config.ServerForm.SetUIData
08:42:56|Verbose| Method entry: Microsoft.Crm.Application.Outlook.Config.ServerForm._okButton_Click
08:42:56|Verbose| Method exit: Microsoft.Crm.Application.Outlook.Config.ServerForm._okButton_Click
08:42:56|Verbose| Method entry: Microsoft.Crm.Application.Outlook.Config.ServerForm.RunEnvironmentDiagnostics
08:42:56|Verbose| Method entry: Microsoft.Crm.Application.Outlook.ConfigDiagnostics.DiagnosticEngine.Run(Environment)
08:42:57|Verbose| Method entry: Microsoft.Crm.Application.Outlook.ConfigDiagnostics.LocalTimeDiagnostic.ExecuteInternal
08:42:57| Info| Current UTC date/time from windows time server on the internet: 11/15/2016 08:42:58
08:42:57| Info| Client UTC Date/Time: 11/15/2016 08:42:57
08:42:57| Info| Difference (in minutes) between client time and actual time: 0.007356165
08:42:57|Verbose| Method exit: Microsoft.Crm.Application.Outlook.ConfigDiagnostics.LocalTimeDiagnostic.ExecuteInternal
08:42:57|Verbose| Method exit: Microsoft.Crm.Application.Outlook.ConfigDiagnostics.DiagnosticEngine.Run(Environment)
08:42:57|Verbose| Method exit: Microsoft.Crm.Application.Outlook.Config.ServerForm.RunEnvironmentDiagnostics
08:43:16| Error| Error connecting to URL: https://crm.<domain.com>/XRMServices/2011/Discovery.svc Exception: Microsoft.Crm.CrmException: Authentication failed
at Microsoft.Crm.Outlook.ClientAuth.ClaimsBasedAuthProvider`1.AuthenticateHomeRealm()
at Microsoft.Crm.Outlook.ClientAuth.ClaimsBasedAuthProvider`1.SignIn()
at Microsoft.Crm.Outlook.ClientAuth.ClientAuthProvidersFactory`1.SignIn(Uri endPoint, Credential credentials, AuthUIMode uiMode, IClientOrganizationContext context, Form parentWindow, Boolean retryOnError)
at Microsoft.Crm.Application.Outlook.Config.DeploymentsInfo.DeploymentInfo.LoadOrganizations(AuthUIMode uiMode, Form parentWindow, Credential credentials)
at Microsoft.Crm.Application.Outlook.Config.DeploymentsInfo.InternalLoadOrganizations(OrganizationDetailCollection orgs, AuthUIMode uiMode, Form parentWindow)
08:43:16| Error| Dynamic Help Link: http://go.microsoft.com/fwlink/?LinkID=398563&lcid=409&cv=6.0.0.302&opsys=10.0.14393.0&client=Outlook&error=Microsoft.Crm.CrmException%3a80044311
08:43:32| Error| Error connecting to URL: https://crm.<domain.com>/XRMServices/2011/Discovery.svc Exception: Microsoft.Crm.CrmException: Authentication failed
at Microsoft.Crm.Outlook.ClientAuth.ClientAuthProvidersFactory`1.RetrieveUserCredentialsAndSignIn(Uri endPoint, Credential credentials, Form parentWindow, Boolean retryOnError, IClientOrganizationContext context)
at Microsoft.Crm.Outlook.ClientAuth.ClientAuthProvidersFactory`1.SignIn(Uri endPoint, Credential credentials, AuthUIMode uiMode, IClientOrganizationContext context, Form parentWindow, Boolean retryOnError)
at Microsoft.Crm.Application.Outlook.Config.DeploymentsInfo.DeploymentInfo.LoadOrganizations(AuthUIMode uiMode, Form parentWindow, Credential credentials)
at Microsoft.Crm.Application.Outlook.Config.DeploymentsInfo.InternalLoadOrganizations(OrganizationDetailCollection orgs, AuthUIMode uiMode, Form parentWindow)
08:43:32| Error| Dynamic Help Link: http://go.microsoft.com/fwlink/?LinkID=398563&lcid=409&cv=6.0.0.302&opsys=10.0.14393.0&client=Outlook&error=Microsoft.Crm.CrmException%3a80044311
