web
You’re offline. This is a read only version of the page.
close
Skip to main content

Notifications

Announcements

No record found.

News and Announcements icon
Community site session details

Community site session details

Session Id :
Dynamics 365 Community / Forums / Microsoft Dynamics CRM (Archived) / ADFS authentication dr...
Microsoft Dynamics CRM (Archived)

ADFS authentication drops in Outlook client

(0) ShareShare
ReportReport
Posted on by Community Member

Hello,

Our customers are experiencing some problems with CRM 2011 running the Microsoft Outlook client. Several people are prompted to re-enter their user credentials when working in CRM, up to 20 times per day.

I found online an issue that causes this when Internet Explorer options are set to "Empty temporary internet files when browser is closed", which would cause CRM in the Outlook client to lose its ADFS authentication when the user closes down an Internet Explorer window.

I've also looked into;

*Putting the CRM site to the Intranet Zone

*Setting the User Authentication setting in IE to "Automatic logon only in intranet zone"

*Setting the "Enable Integrated Windows Authentication" to checked in IE.

*Clearing cookies and passwords and temporary files from IE

*Making sure "Use a proxy server for you LAN" setting in IE is not checked.

The problem seems to persist.

Any ideas?

*This post is locked for comments

I have the same question (0)
  • Logan Profile Picture
    Logan on at

    Hi Simon,

    Apart from all the above check lists, did you checked if there are any third party outlook Add-ins which is causing the issue.

    What version of IE / Client / Update roll ups are on Server and CRM for Outlook client you have ?

    You check this :-

    technet.microsoft.com/.../gg188586.aspx

  • Community Member Profile Picture
    Community Member on at

    Thanks for your reply, I'll have to check for any Outlook Add-ins, but I am pretty sure there aren't any.

    The token expiration timer is set to 480 (minutes), so that's not what's causing this.

    Last thing I did was adding the external https CRM URL to Internet Explorers Trusted Sites through group policy object.

    Do u know if that "overrides" having the internal (non-https) URL added to the Sites of the Intranet Zone in IE?

    I mean do I need them on both places or is Trusted Sites covering it all?

  • Logan Profile Picture
    Logan on at

    Only internal CRM URL is suppose to be in Intranet Zone and it is ok to have External URL  in Trusted sites.

    What is the current update roll ups on Server and Client ?

    "Empty temporary internet files when browser is closed" This setting I believe you have already addressed it.?

    Thanks,

    Nadeem Ansari

  • Community Member Profile Picture
    Community Member on at

    Yes, the internal URL goes in "Intranet Zone" and the external in "Trusted Sites". Like this:

    Intranet Zone : crm.company.com

    Trusted Sites: https://crm.company.com

    Right?

    Although, at the moment they have these settings

    Intranet Zone:

    Trusted Sites: *.company.com

    I was assured this would be sufficient, can you confirm that?

    The CRM is running update rollup 12, Internet explorer version 10, I don't know about the Outlook Client at this time.

  • Community Member Profile Picture
    Community Member on at

    Outlook version is 14.0.7015.1000 64-bit

    Add-ins to Outlook are (I've translated the names to english so I also give you the exact dll-names) :

    Active Add-ins

    Connectivity services for companies, add-in  (BCSAddin.dll)

    Microsoft Dynamics CRM   (crmaddin.dll)

    Microsoft Dynamics CRM   (crmaddin.dll)

    Microsoft Exchange add-in   (UmOutlookAddin.dll)

    Microsoft Outlook Social Connector   (SOCIALCONNECTOR.DLL)

    Microsoft Sharepoint Workspace for Outlook add-in   (GROOVEEX.DLL)

    OneNote-notes for Outlook-objects   (ONBttnOL.dll)

    Add-in for import of colleagues in Microsoft Sharepoint Server   (ColleagueImport.dll)

    Inactive Add-ins

    Outlook Add-in for Microsoft Access for datacollection and publication   (ACCOLK.DLL)

    Add-in Microsoft VBA for Outlook   (OUTLVBA.DLL)

    Turned of Add-ins

    Windows Search Email Indexer (mssphtb.dll)

  • Logan Profile Picture
    Logan on at

    *.company.com should be fine.

    Make sure they don't have any cached credentials stored in credentials manager.

    What about the web client ? I mean when they access CRM through IE does that works fine or gives the same issue ?

    Run the fiddler in the background and let the issue gets re-produce so that all the sessions will get captured.

    Check if you find any errors in that. (Make sure to enable the option to decrypt HTTPS:- Open fiddler---Tools--HTTPS--decrypt.)

    Let me know the results.

    Thanks,

    Nadeem

Under review

Thank you for your reply! To ensure a great experience for everyone, your content is awaiting approval by our Community Managers. Please check back later.

Helpful resources

Quick Links

Responsible AI policies

As AI tools become more common, we’re introducing a Responsible AI Use…

Neeraj Kumar – Community Spotlight

We are honored to recognize Neeraj Kumar as our Community Spotlight honoree for…

Congratulations to the November Top 10 Community Leaders!

These are the community rock stars!

Leaderboard > 🔒一 Microsoft Dynamics CRM (Archived)

#1
SA-08121319-0 Profile Picture

SA-08121319-0 4

#1
Calum MacFarlane Profile Picture

Calum MacFarlane 4

#3
Alex Fun Wei Jie Profile Picture

Alex Fun Wei Jie 2

Last 30 days Overall leaderboard

Featured topics

Product updates

Dynamics 365 release plans