Using Web Application Proxy to Publish Dynamics CRM 2013 to the internet question

(0) Share

Report

Posted on by Community Member

Hi All

We have just deployed IFD on CRM 2013 on premise. currently its in test and security is quite high on our agenda so I just had a question on deploying this through Web application proxy.

I setup ADFS with Windows 2012 R2 which is the latest version and doesn't rely on IIS.

I followed this guide to help me to the web application deployment as this wasn't that easy however this article really helped.

blogs.technet.microsoft.com/.../using-web-application-proxy-to-publish-dynamics-crm-2013-to-the-internet

In the article it talks about putting the Auth, DEV and ADFS URLs using passthru pre-authentication and only the CRM organization external URL uses ADFS.

Does it make it less secure by using pass thru for this external URLs?

Appreciate any feedback on this.

Thanks

*This post is locked for comments

I have the same question (0)

All responses (1)

Answers (1)

Verified answer

alf 17,915 on at

Like (1)

Report

Hi - I'm pretty sure that passthru is the only supported way were crm will work with the web application proxy. If security is super high, my recommendation is to NOT use web application proxy. But instead place crm and adfs behind a good ssl termination box such as Big Ip F5s or Kemp. We use Kemps here at PowerObjects and they hum along great. Big IP F5s can add a very good layer of security. In addition look into implementing two factor authentication with ADFS.

Was this reply helpful? Yes No