web
You’re offline. This is a read only version of the page.
close
Skip to main content

Notifications

Announcements

No record found.

News and Announcements icon
Community site session details

Community site session details

Session Id :
Dynamics 365 Community / Forums / Microsoft Dynamics CRM (Archived) / Question about CRM IFD...
Microsoft Dynamics CRM (Archived)

Question about CRM IFD with different external and internal domain names

(0) ShareShare
ReportReport
Posted on by Community Member

Hello,

I'm testing custom request for CRM implementation and I encountered on a problem. Not sure if I did something wrong or such configuration is not allowed. So here are the details of my environment:

1x DC with ADFS and ADCS roles installed (win2012 R2)

1x CRM server with CRM2015 (win 2012 R2)

1x SQL server with SQL 2014 (win 2012 R2)

1x standalone server with WAP role (proxy) (win 2012 R2).

Internal DNS configuration (1 server with 2 forward lookup zones:

crm.local:

A record "auth" point on CRM server IP

A record "dev" point on CRM server IP

A record "firma" point on CRM server IP

A record "sts" point on DC server IP

contoso.com:

A record "auth" point on CRM server IP

A record "dev" point on CRM server IP

A record "firma" point on CRM server IP

A record "sts" point on DC server IP

First 3 servers are in domain crm.local configured with certificate requested using IIS, provided by CA with wildcard *.crm.local. Certificate with private key is added to personal cert on DC and CRM server and used by CRM app (access to this cert has been provided to crm_service account on which CRM is working). Also certificate *.contoso.com has been generated and put on CRM and DC server for further actions.

CRM organization is called "Firma" and after configuring everything according to available instructions internal access to CRM using link https://firma.crm.local is working properly.

Now Im trying to configure internet-facing deplyoment where I counter on problem.

After I provided addressed to Web Application Server Domain & Org Web SD (contoso.com) and Discovery Web SD (dev.contoso.com) followed by external domain (auth.contoso.com) I receive warning during verification that "The Discover Web Service could not be accesssed. The domain is unavailable or does not exist."

My question is :

Is it possible to configure CRM with IFD in a way that local users are using internal domain (crm.local) to access CRM while external users are using external domain (contoso.com) ? If yes, then what is wrong with my configuration above ?

Just small request, if you propose to apply some settings, please provide command (e.g. use "setspn some_value" instead of "try to add correct SPN")

Thank you very much in advance for reply.

*This post is locked for comments

I have the same question (0)
  • Rickard Norström Profile Picture
    Rickard Norström on at

    Hi,

    You can't have two paths to the crm since you can only set up one set of server urls in the IFD setup. The internal and external path should be set up with DNS somehow. The instructions of how you do that is generally pretty bad plus you might run in to issues like people using the outlook client.

  • Community Member Profile Picture
    Community Member on at

    We can configure one address in Deployment manager (instructions usually named https://internalcrm.domain.com) and other address is created during configurating IFD (auth,dev,org_name). Question is can these addresses be from different domains ?

    In different lab I managed to setevnironment with same configuration as above but everywhere I used contoso.com in configuring CRM&ADFS (domain name was still crm.local) and both external and internal network were accessing CRM using address firma.contoso.com (internal DNS was configured to resolve names from domain contoso.com to servers in domain crm.local). This time I want to have separate domain for internal and external access

  • mehrdad heydari Profile Picture
    mehrdad heydari 5 on at

    i have exact same question and like you i don't find any answer yet.

    i can do it with ease in exchange , sharepoint ... and it's odd that dynamics crm has no solution for it sometimes it means that we should rename our entire domain to use Dynamics CRM from Internet!

  • truc binh Profile Picture
    truc binh 6 on at

    Hi,

    Did you manage to do this? I have the same problem.

    Binh.

Under review

Thank you for your reply! To ensure a great experience for everyone, your content is awaiting approval by our Community Managers. Please check back later.

Helpful resources

Quick Links

Responsible AI policies

As AI tools become more common, we’re introducing a Responsible AI Use…

Neeraj Kumar – Community Spotlight

We are honored to recognize Neeraj Kumar as our Community Spotlight honoree for…

Congratulations to the November Top 10 Community Leaders!

These are the community rock stars!

Leaderboard > 🔒一 Microsoft Dynamics CRM (Archived)

#1
SA-08121319-0 Profile Picture

SA-08121319-0 4

#1
Calum MacFarlane Profile Picture

Calum MacFarlane 4

#3
Alex Fun Wei Jie Profile Picture

Alex Fun Wei Jie 2

Last 30 days Overall leaderboard

Featured topics

Product updates

Dynamics 365 release plans