web
You’re offline. This is a read only version of the page.
close
Skip to main content
Community site session details

Community site session details

Session Id :
Dynamics 365 Community / Forums / Microsoft Dynamics CRM (Archived) / Web Application Proxy ...
Microsoft Dynamics CRM (Archived)

Web Application Proxy could not connect to the ADFS configuration storage

(0) ShareShare
ReportReport
Posted on by Community Member

Hi All

Please if you could help

Currently setting up a Web Application proxy to publish our CRM externally. The WAP is non domain server in our DMZ and we have only allowed Port 80 and 443 inbound/outbound from the WAP to the internal ADFS 3.0 server which is a domain joined server and a member of our AD domain.

Had to create a local DNS entry on our WAP server using the hosts file to our ADFS server (sts1.orgname.com) and was able to configure successfully the WAP role and publish applications.

I get the event ID 245 to prove this is the case:

"The federation server proxy successfully retrieved its configuration from the Federation Service 'sts1.orgname.com'.

However to publish CRM successfully externally some additional steps need to be completed regarding disabling URL translation and to perform this piece I need to open up powershell and run the Get-WebApplicationProxyApplication cmdlet. I run the same command as shown in this document

Get-WebApplicationProxyApplication Name* | Format-List replacing Name* with our own organization published apps name.

https://blogs.technet.microsoft.com/dynamicspts/2014/10/01/using-web-application-proxy-to-publish-dynamics-crm-2013-to-the-internet/

However for some reason in Powershell it doesn't recognize that command at all and I get the following error message:

Get-WebApplicationProxyApplication : Web Application Proxy could not connect to the AD FS configuration storage and
could not load the configuration. Make sure that the Web Application Proxy server can connect to the AD FS server, and
if not, run the Install-WebApplicationProxy command.
(0x80075213)

Now when I configured the WAP role I created a local user on the internal ADFS server and put this user in the 'administrators' group of the server and used this account to perform the initial authentication when configuring the WAP server under the WAP configuration wizard when it asks to enter the credentials of a local administrator account on the federation server.

Would this account be sufficient or would I need to create a domain account in our AD and add this user in the local administrators group on the ADFS server and then use this account to configure WAP?

Any help on this would be most appreciated

*This post is locked for comments

I have the same question (0)
  • Community Member Profile Picture
    Community Member on at
    RE: Web Application Proxy could not connect to the ADFS configuration storage

    To add to this. We originally have setup the internal ADFS server using a san certificate which has a Subject alternative name of sts1.orgname.com. however on the Web application proxy we are using a wildcard certificate for our *.orgname.com

    Originally I used a San cert on this server but then realized we would have to create many more subject alternative names on the SAN cert, so to avoid this we used the wildcard.

    Is this configuration supported? Can I use a san cert and wildcard on the two different ADFS servers?

  • Verified answer
    Community Member Profile Picture
    Community Member on at
    RE: Web Application Proxy could not connect to the ADFS configuration storage

    Ok this was an easy one, the issue was I wasn't running Power shell as administrator and that is why I was getting the error.  Doh!

Under review

Thank you for your reply! To ensure a great experience for everyone, your content is awaiting approval by our Community Managers. Please check back later.

Helpful resources

Quick Links

Responsible AI policies

As AI tools become more common, we’re introducing a Responsible AI Use…

Pallavi Phade – Community Spotlight

We are honored to recognize Pallavi Phade as our Community Spotlight honoree for…

Congratulations to the October Top 10 Community Leaders!

These are the community rock stars!

Leaderboard > 🔒一 Microsoft Dynamics CRM (Archived)

#1
Wayne Walton Profile Picture

Wayne Walton 2

#2
Good.Panos Profile Picture

Good.Panos 1

Last 30 days Overall leaderboard

Featured topics

Product updates

Dynamics 365 release plans