I am currently looking at upgrading our CRM 2015 environment to Dynamics 365. So far it seems a heck of a lot easier than the upgrade from CRM4 to CRM 2015 thankfully.
With this upgrade I want to introduce a Web Application Proxy to allow external access to CRM. We have a single organization with no plans to ever increase that. With Windows Server 2016 and the web application proxy in it along with ADFS 4.0, I have been able to publish the internal URL externally and have it use ADFS pre-authentication and allow access into Dynamics 365 without the use of claims or IFD. It simply required the SPNs and Kerberos to be set up correctly.
This appears to work. I'm sure I'm missing something though? For smaller organization that don't need multiple organization names would this be OK? From my research it appears that the CRM tablet application may need claims authentication to be set up?
Anyone out there have a similar set up, or some guidance on why not to go this route?
Thanks in advance for sharing your expert opinions!
*This post is locked for comments