Hi,
We have deployed MS Dynamics CRM using IFD with ADFS authentication. CRM and ADFS is in separate server.
Due to security purpose we are asked to remove unwanted headers which can be used by hackers. We are able to remove the server header for all websites except CRM. I used the registry key setting "HKLM\SYSTEM\CurrentControlSet\Services\HTTP\Parameters\DisableServerHeader" or Gloabal.asax file which worked in other web applications. Unfortunately for CRM we still see the server header even after removing it using web config file or using the registry key setting.
Since these options did not work we tried using URLRewrite to add an outbound rule and remove the value of server header. But after adding this the CRM is not working. I can able to authenticate and login to CRM, but after that it just shows the blank page. It is not redirecting to main.aspx page, it just stays in default .aspx. I tried to manualy give the main.aspx page as below, but it still shows the blank page.
cprms.hpb.gov.sg/default.aspx
cprms.hpb.gov.sg/main.aspx
Please help.
*This post is locked for comments
I have the same question (0)
