web
You’re offline. This is a read only version of the page.
close
Skip to main content

Notifications

Announcements

No record found.

News and Announcements icon
Community site session details

Community site session details

Session Id :
Dynamics 365 Community / Forums / Microsoft Dynamics CRM (Archived) / CRM 2016 site not work...
Microsoft Dynamics CRM (Archived)

CRM 2016 site not working with Kerberos authentication

(0) ShareShare
ReportReport
Posted on by JYZ 5


We just created CRM 2016 prem site, migrated from 2015 CRM to new site, put dev URL and certificate, everything worked.


Then we changed to production certificate, URL. Also updated DNS.
After change, CRM 2016 site is not working with Kerberos authentication.
After 3 login fails, some users got 401 error.

The server is 2012R2, IIS is version 8.
IIS CRM site https(443)
Application pool: CRMAppPool (.Net 4.0 integrated, NetworkService identity)
'.NET Authorization Rules' set "Allow all users"

In IIS, I set window authentication provider NTLM on top of Negotiate, the site is mostly working (email couldn't send out), but Outlook client won't work with NTLM authentication.

We tried add SPNs, that makes situation worse.

Server 'IE Enhanced Security' set off - no use.

Windows Authentication useAppPoolCredentials set True -- no use.

increased value for:
HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\HTTP\Parameters\
MaxFieldLength
HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\HTTP\Parameters\
MaxRequestBytes
no use

If the site is rebind to dev url, everything works again.

*This post is locked for comments

I have the same question (0)
  • Suggested answer
    Adrian Begovich Profile Picture
    Adrian Begovich 1,027 Moderator on at

    Hi JYZ,

    These articles might be helpful.

    1. https://community.dynamics.com/crm/b/webfortisblogunleashingyourcrm/archive/2015/02/24/microsoft-dynamics-crm-authentication-on-premises
    2. https://technet.microsoft.com/en-us/library/hh699825.aspx
    3. https://blogs.msdn.microsoft.com/crm/2012/09/19/enabling-kerberos-for-microsoft-dynamics-crm-2011/
    4. http://quantusdynamics.blogspot.com/2011/12/extreme-performance-with-dynamics-crm.html
    5. http://quantusdynamics.blogspot.com/2012/10/dynamics-crm-troubleshooting-kerberos.html

Under review

Thank you for your reply! To ensure a great experience for everyone, your content is awaiting approval by our Community Managers. Please check back later.

Helpful resources

Quick Links

Responsible AI policies

As AI tools become more common, we’re introducing a Responsible AI Use…

Neeraj Kumar – Community Spotlight

We are honored to recognize Neeraj Kumar as our Community Spotlight honoree for…

Congratulations to the November Top 10 Community Leaders!

These are the community rock stars!

Leaderboard > 🔒一 Microsoft Dynamics CRM (Archived)

#1
SA-08121319-0 Profile Picture

SA-08121319-0 4

#1
Calum MacFarlane Profile Picture

Calum MacFarlane 4

#3
Alex Fun Wei Jie Profile Picture

Alex Fun Wei Jie 2

Last 30 days Overall leaderboard

Featured topics

Product updates

Dynamics 365 release plans