web
You’re offline. This is a read only version of the page.
close
Skip to main content

Notifications

Announcements

No record found.

News and Announcements icon
Community site session details

Community site session details

Session Id :
Dynamics 365 Community / Forums / Microsoft Dynamics CRM (Archived) / Dynamics 365 On-Premis...
Microsoft Dynamics CRM (Archived)

Dynamics 365 On-Premise IFD - MSIS7102: Requested Authentication Method is not supported on the STS

(0) ShareShare
ReportReport
Posted on by Hugo G. Morillo 75

Hello everyone.

I recently configured a IFD for one of my customers. They use Dynamics 365 On-premise 8.2.2. I want to use form based authentication on both sides (internal and external). I enabled the Form Based Auth on intranet and extranet at the AD FS Management console.

When I tried to log in, the url of the STS always shows the 'wauth parameter' of WIA (Windows Integrated Authentication). The following URL is what I always get:

sts.divino.com.uy/.../wia;wtrealm=https%3a%2f%2fgestion.divino.com.uy%3a8443%2f&wctx=rm%3d1%26id%3d905efc69-9c28-414c-baef-ef57ecc58a48%26ru%3d%252fdefault.aspx%26crmorgid%3d00000000-0000-0000-0000-000000000000&wct=2018-04-17T18%3a22%3a27Z&wauth=urn%3afederation%3aauthentication%3awindows

 


No matter if I try internally or externally, it always shows incorrect wauth parameter. If I change the wauth parameter for "wauth=urn%3aoasis%3anames%3atc%3aSAML%3a1.0%3aam%3apassword", everything works good.

When I check the event viewer on the AD FS server, says the following error: Microsoft.IdentityServer.Service.Policy.PolicyServer.Engine.InvalidAuthenticationTypePolicyException: MSIS7102: Requested Authentication Method is not supported on the STS.

 


Any idea of what could be happening?

Thanks in advance!

*This post is locked for comments

I have the same question (0)
  • Hugo G. Morillo Profile Picture
    Hugo G. Morillo 75 on at

    Even more, if I disable IFD in CRM Server and just leave Claim-Based Auth, and want to use Form Based Auth, also fails with same error

  • David Jennaway Profile Picture
    David Jennaway 14,065 on at

    The wauth parameter is specified in the MSCRM_Config database - I don't remember the specifics, but it's in one of the Federation... tables. There are entries for the internal and the external (IFD) settings, and by default it's Windows authentication for internal access, and Forms for external

    If you need to change it, you can change it directly there, though I'd backup the MSCRM_Config database beforehand, just in case

  • Suggested answer
    stern Profile Picture
    stern 97 on at

    To expand on what David said, you can update this directly from the MSCRM_Config database with the following statement:

    Update FederationProviderProperties

    set NVarCharColumn = 'urn:oasis:names:tc:SAML:1.0:am:password'

    where ColumnName = 'IntegratedAuthenticationMethod'

    The column NVarCharColumn stores this authentication method. The"urn:federation:authentication:windows" is Windows Auth, the value "urn:oasis:names:tc:SAML:1.0:am:password" is Forms-Based,

    Definitely backup your database, and make sure you have tried all supported methods to troubleshoot this first.  But it did work for me.

Under review

Thank you for your reply! To ensure a great experience for everyone, your content is awaiting approval by our Community Managers. Please check back later.

Helpful resources

Quick Links

Responsible AI policies

As AI tools become more common, we’re introducing a Responsible AI Use…

Neeraj Kumar – Community Spotlight

We are honored to recognize Neeraj Kumar as our Community Spotlight honoree for…

Congratulations to the November Top 10 Community Leaders!

These are the community rock stars!

Leaderboard > 🔒一 Microsoft Dynamics CRM (Archived)

#1
SA-08121319-0 Profile Picture

SA-08121319-0 4

#1
Calum MacFarlane Profile Picture

Calum MacFarlane 4

#3
Alex Fun Wei Jie Profile Picture

Alex Fun Wei Jie 2

Last 30 days Overall leaderboard

Featured topics

Product updates

Dynamics 365 release plans