Skip to main content

Notifications

Announcements

No record found.

News and Announcements icon
Dynamics 365 Community / Forums / Microsoft Dynamics CRM (Archived) / Clarity needed for on-...
Microsoft Dynamics CRM (Archived)

Clarity needed for on-prem "Sandbox" Server/Role

(0) ShareShare
ReportReport
Posted on by bpr_admin

I am now having major confusion over the sandbox as a function and a role in CRM on-prem

My Understanding:

  1. When I initially read documentation, it seemed like the sandbox role was best placed on it's own server in the production cluster so that it could create an isolation for any code that we wrote and ran in production as well as any plug-ins we imported as a solution, separate from the built-in code.
  2. When I read about Google chrome running as a sandbox in windows, it is a security feature, and creates isolation. (this gives you insight to my understanding of what a "sandbox" does in secure computing)

What we have:

  • A production D365 (ver 8.2) cluster where a sandbox server has the sandbox role on it.
  • A development D365 server configured as "Full Server" on it (but I don't think the sandbox role is on it)

Why I'm confused:

  1. All youtube videos about "sandbox" in D365 online seems to refer to a dev environment, not a production environment
  2. If it's only for dev, when even have a server/role and just instead create a new dev cluster or server?
  3. What does the freaking Sandbox Processing Server actually do?
  4. What role does the Sandbox Server/Role play in security best practices on a modularized CRM cluster where all roles are broken out to their own servers?

*This post is locked for comments

  • David Jennaway Profile Picture
    David Jennaway 14,063 on at
    RE: Clarity needed for on-prem "Sandbox" Server/Role

    To add to the previous reply, when considering the Sandbox Server on premise, the main security-related aspect is that you can configure plugin assemblies to run within the Sandbox Service, which applies code-access security to restrict what the plugin code can do (so that it has very little access to local resources)

    Whether the Sandbox service runs on a different server from other roles is more an consideration for load balancing than for security. One possible security use is, if a plugin makes an http/https request to an external service (this is permitted in the sandbox), then you could configure firewall rules to only allow such traffic from the sandbox server

  • Suggested answer
    Aric Levin Profile Picture
    Aric Levin 30,188 on at
    RE: Clarity needed for on-prem "Sandbox" Server/Role

    I think you are confused.

    The Sandbox Processing Server that you are referring to for CRM On-Premise (as a server role), has nothing to do with Sandbox environment in CRM Online.

    CRM Online refers to non-production server instances as Sandbox Instances. These can be dev/test/production. The main reason is also the Sandbox instances have a different cost then production instances.

    Sandbox Processing service handles things like integration, plugins, processes, etc...

    When searching online search for "CRM Sandbox processing service or role"

    Hope this helps.

  • bpr_admin Profile Picture
    bpr_admin on at
    RE: Clarity needed for on-prem "Sandbox" Server/Role

    Anyone? Surely I thought this would be an easy answer. But it looks like most people don't have clarity about this either, Yikes.

Under review

Thank you for your reply! To ensure a great experience for everyone, your content is awaiting approval by our Community Managers. Please check back later.

Helpful resources

Quick Links

December Spotlight Star - Muhammad Affan

Congratulations to a top community star!

Top 10 leaders for November!

Congratulations to our November super stars!

Tips for Writing Effective Suggested Answers

Best practices for providing successful forum answers ✍️

Leaderboard

#1
André Arnaud de Calavon Profile Picture

André Arnaud de Cal... 291,280 Super User 2024 Season 2

#2
Martin Dráb Profile Picture

Martin Dráb 230,235 Most Valuable Professional

#3
nmaenpaa Profile Picture

nmaenpaa 101,156

Leaderboard

Featured topics

Product updates

Dynamics 365 release plans