Skip to main content

Notifications

Announcements

No record found.

News and Announcements icon
Dynamics 365 Community / Forums / Customer experience | Sales, Customer Insights,... / I can't authentica...
Customer experience | Sales, Customer Insights,...
Answered

I can't authenticate to CRM 2013 from a site other than localhost

(0) ShareShare
ReportReport
Posted on by luiking85 20

Greetings. We are currently migrating from CRM 2011 to 2013, this process was successful with the help of Xavier here on this forum. But we have a doubt in the AD authentication configuration in the organization which is the following: Performing some tests we see that it is only possible to authenticate as a user from internally server using the url  (http://localhost:5555/MYORG), but if I change this URL to any or ( mysite.abc.local:5555/MYORG) does not work and authentication is not possible. This was what we tried:

1. We add mysite.abc.local in the host file of the server

2. IIS bindings for both http and https were changed to ports 5555 and 443 respectively.

3. In regedit set the UrlServer property to mysite.abc.local:443/MYORG

I thanks those who can tell me why this happens and how I could correct it please?

I stay tuned. :)

  • Suggested answer
    luiking85 Profile Picture
    luiking85 20 on at
    RE: I can't authenticate to CRM 2013 from a site other than localhost

    Hi Andrew,

    You are right, the documentation specifies the conditions to configure communication with AD and guarantee access to resources for each user through SPNs.

    Thanks!!

    Information source: www.microsoft.com/.../details.aspx

    Document: Manual de instalación de Microsoft Dynamics CRM 2013

    Pages: 44 Active Directory

  • Suggested answer
    XM-22040801-0 Profile Picture
    XM-22040801-0 11 on at
    RE: I can't authenticate to CRM 2013 from a site other than localhost

    Hello,

    It seems that you do not use ADFS?

    Use only one binding is recommended (HTTPS recommended).

    Change your UrlServer property to https://mysite.abc.local, not to mysite.abc.local:443/MYORG. In other words, do not put the path with the name of the organization (/MYORG).

    If the error persists, try to disable loopback check. See https://social.technet.microsoft.com/wiki/contents/articles/37337.disable-loopback-check-in-iis.aspx

    Is the certificate a self-signed certificate?

  • Verified answer
    a33ik Profile Picture
    a33ik 84,323 Most Valuable Professional on at
    RE: I can't authenticate to CRM 2013 from a site other than localhost

    Hello,

    Long time since I haven't seen questions about IFD/ADFS. Back in days, I did a rollout of on-prem Dynamics 2013 with IFD/ADFS enabled and I experienced exactly your issue. The solution was - the proper set up of service principals - cloudblogs.microsoft.com/.../

Under review

Thank you for your reply! To ensure a great experience for everyone, your content is awaiting approval by our Community Managers. Please check back later.

Helpful resources

Quick Links

December Spotlight Star - Muhammad Affan

Congratulations to a top community star!

Top 10 leaders for November!

Congratulations to our November super stars!

Tips for Writing Effective Suggested Answers

Best practices for providing successful forum answers ✍️

Leaderboard

#1
André Arnaud de Calavon Profile Picture

André Arnaud de Cal... 291,280 Super User 2024 Season 2

#2
Martin Dráb Profile Picture

Martin Dráb 230,235 Most Valuable Professional

#3
nmaenpaa Profile Picture

nmaenpaa 101,156

Leaderboard

Featured topics

Product updates

Dynamics 365 release plans