web
You’re offline. This is a read only version of the page.
close
Skip to main content

Notifications

Announcements

No record found.

News and Announcements icon
Community site session details

Community site session details

Session Id :
Dynamics 365 Community / Forums / Microsoft Dynamics 365 | Integration, Dataverse... / ADFS External auth for...
Microsoft Dynamics 365 | Integration, Dataverse...
Unanswered

ADFS External auth for CRM portals showing Unable to authenticate with the external account provider. - Troubleshooting tips

(0) ShareShare
ReportReport
Posted on by JlAdan_ZA 15

Adam Pfau this might be in your area of expertise


We are trying to setup a MS CRM portal for external ADFS auth, We have done the config, its takes you to the ADFS login page, where the login does occur, however once it redirects back to the portal we are presented with "Unable to authenticate with the external account provider".

How do we go about troubleshooting this?

I have the same question (0)
  • Community Member Profile Picture
    Community Member on at

    Hi,

    Are you using Azure AD Connect ? I assume it has an event log that you can trace?

  • JlAdan_ZA Profile Picture
    JlAdan_ZA 15 on at

    It's on prem ADFS, which unfortunately we dont have direct access to. However its been reported to us that there are no errors on that side. We can also see the passback from the ADFS server hitting the portal after the login.

    There is clearly something mis configured somewhere so we are trying to troubleshoot somewhat blind at the moment. Would enabling portal logging assist at all, or would all the errors only be on the ADFS side?

  • Community Member Profile Picture
    Community Member on at

    If a setting is not configured correctly on the portal then enabling portal error log may help as well.

  • JlAdan_ZA Profile Picture
    JlAdan_ZA 15 on at

    OK we will look into doing that, will need to get auth from their IT department for the blob storage so that might take some time. Is there anything we can check on the dev tools side in the browser, or some items in the config we can double check in the meantime?

    Its entirely possible we have missed something on our side so any reference material would also be welcome so we can double check we have done our end correctly.

  • Community Member Profile Picture
    Community Member on at

    Wondering if the network tab in chrome dev tools shows anything weird when the call back happens?

  • JlAdan_ZA Profile Picture
    JlAdan_ZA 15 on at

    We do see the call back initiated from ADFS, no errors or anything like that immediately screams a problem. If we had what a proper call back would look like we could do a compare

  • Community Member Profile Picture
    Community Member on at

    so basically, this call back is handled by some end point on the portal, which means, if something is wrong in handling that call back, the portal should "theoretically" through an error in the log which you don't have handy now.

    Now, in the mean time,while waiting on enabling the log for the portal, spin off a dummy ASP.NET application (the same portal technology) and try to implement the authentication with the same values you used for the portal on that application. You should find plenty of articles on how to do that online. I'm pretty sure you will face the same issue (unless the portal itself has a bug) and you can debug the code and know the problem.

Under review

Thank you for your reply! To ensure a great experience for everyone, your content is awaiting approval by our Community Managers. Please check back later.

Helpful resources

Quick Links

Responsible AI policies

As AI tools become more common, we’re introducing a Responsible AI Use…

Neeraj Kumar – Community Spotlight

We are honored to recognize Neeraj Kumar as our Community Spotlight honoree for…

Congratulations to the November Top 10 Community Leaders!

These are the community rock stars!

Leaderboard > Microsoft Dynamics 365 | Integration, Dataverse, and general topics

#1
Siv Sagar Profile Picture

Siv Sagar 93 Super User 2025 Season 2

#2
#ManoVerse Profile Picture

#ManoVerse 80

#3
Martin Dráb Profile Picture

Martin Dráb 64 Most Valuable Professional

Last 30 days Overall leaderboard

Featured topics

Identifying an Org as CDS or Dynamics
Get batch job history log from D365 FO to Power Automate
Gross and Net Weight of Shipments feeding back into Sales Order (from External Source)

Product updates

Dynamics 365 release plans