Skip to main content

Notifications

Announcements

No record found.

News and Announcements icon
Community site session details

Community site session details

Session Id :
Dynamics 365 Community / Forums / Microsoft Dynamics CRM (Archived) / Dynamics 365 on-premis...
Microsoft Dynamics CRM (Archived)

Dynamics 365 on-premise - Windows Application Proxy without claims/ifd?

(1) ShareShare
ReportReport
Posted on by cmillerlce 147

I am currently looking at upgrading our CRM 2015 environment to Dynamics 365.  So far it seems a heck of a lot easier than the upgrade from CRM4 to CRM 2015 thankfully.

With this upgrade I want to introduce a Web Application Proxy to allow external access to CRM.  We have a single organization with no plans to ever increase that.  With Windows Server 2016 and the web application proxy in it along with ADFS 4.0, I have been able to publish the internal URL externally and have it use ADFS pre-authentication and allow access into Dynamics 365 without the use of claims or IFD.  It simply required the SPNs and Kerberos to be set up correctly.  

This appears to work.  I'm sure I'm missing something though?  For smaller organization that don't need multiple organization names would this be OK?  From my research it appears that the CRM tablet application may need claims authentication to be set up?

Anyone out there have a similar set up, or some guidance on why not to go this route?  

Thanks in advance for sharing your expert opinions!

*This post is locked for comments

  • cmillerlce Profile Picture
    cmillerlce 147 on at
    RE: Dynamics 365 on-premise - Windows Application Proxy without claims/ifd?

    Thanks Pierre. I kinda figured this was the way to go but I thought I would at least check.  It remains frustrating that after so many releases since CRM3 they still rely on IFD and the multiple DNS names where as so many other robust internet facing Microsoft products do it without all the IFD hassle.

  • Verified answer
    Pierre Andre Joubert Profile Picture
    Pierre Andre Joubert 175 on at
    RE: Dynamics 365 on-premise - Windows Application Proxy without claims/ifd?

    If want full functionality and support for external access you will definitely need the Claims Auth with IFD enabled as that is what the apps support.

    I have just recently posted basic reference info on the configuration considerations for the D365 8.2 update for on-prem with Server 2016, ADFS 4.0 and WAP.  You can find the post here: http://bit.ly/D365IFDWAP

    Let me know if this helps.

Under review

Thank you for your reply! To ensure a great experience for everyone, your content is awaiting approval by our Community Managers. Please check back later.

Helpful resources

Quick Links

Announcing Our 2025 Season 1 Super Users!

A new season of Super Users has arrived, and we are so grateful for the daily…

Vahid Ghafarpour – Community Spotlight

We are excited to recognize Vahid Ghafarpour as our February 2025 Community…

Tip: Become a User Group leader!

Join the ranks of valued community UG leaders

Leaderboard

#1
André Arnaud de Calavon Profile Picture

André Arnaud de Cal... 292,489 Super User 2025 Season 1

#2
Martin Dráb Profile Picture

Martin Dráb 231,305 Most Valuable Professional

#3
nmaenpaa Profile Picture

nmaenpaa 101,156

Leaderboard

Featured topics

Product updates

Dynamics 365 release plans