web
You’re offline. This is a read only version of the page.
close
Skip to main content

Notifications

Announcements

No record found.

News and Announcements icon
Community site session details

Community site session details

Session Id :
Dynamics 365 Community / Forums / Microsoft Dynamics CRM (Archived) / IFD with Internal.loca...
Microsoft Dynamics CRM (Archived)

IFD with Internal.local Webserver

(0) ShareShare
ReportReport
Posted on by Mike Hansen 70

I have IFD working with forms based authentaction and all is working well. I would like to get an SSL cert though. I have not done this yet as I am a bit confused and I didn't get the information I need from the IFD deployment doc or I did not understand it correctly.

I have an external domain I registered with sub domains that point back to my router that pass requests to my webserver. I just assigned one of my static IP's I got from my ISP to this purchased domain. 

My question is, where do I make the request for the SSL wild card cert that I am going to need for my Orgs? Do I make the request from the webserver? This is where I am confused. For instance:

External domain name: something.com

Internal webserver name: webserver.internaldomain.local

If I make the request from the internal webserver then it seems all external requests are going to get a certificate error because webserver.internaldomain.local is the name on the certificate. It seems all subdomain.something.com requestes will get a cert error? What am I missing here?

*This post is locked for comments

I have the same question (0)
  • alf Profile Picture
    alf 17,915 on at

    Hi Mike,

    Get the ssl wildcard cert for *.something.com 

    This request should be made from your web server.  After you install the ssl cert, then your web server will listen in two ports -- http traffic in port 80 or 5555 (depending on how you installed) and https on port 445. 

     You will then need to run the ifdconfig tool.  This will then tell your crm server which ips are internals so it knows when to do on prem authentication and when to do ifd.

  • Mike Hansen Profile Picture
    Mike Hansen 70 on at

    When you say *.something.com do you mean "something.com" and any subdomain under it or just the main Org and all Orgs under it?

    Also, I have a private IP assigned to my web server at the moment. Do I need to assign the public static IP that is redirecting from my router to the internal webserver before I make the Cert request? Otherwise all requests to my webserver will be one IP address but when they finally hit my webserver the internal address will conflict with the Cert's authorized IP address? Or am I thinking too much here?

    I jsut want to make sure that when I am requesting the Cert I have the correct IP address assigned. The public IP that redirects to my webserver is just a Virtual redirect on my router. That public IP is not really assigned to any device at the moment.

    Sorry for the confusing questions on this point!

     

  • alf Profile Picture
    alf 17,915 on at

    Hi Mike,

    The certificate is a wild card *.something.com so it works with xyz.something.com.  When accessing ifd you will access orgname.something.com  where orgname is the prefix in the full url.  The ssl certificate is related to a domain name and has nothing to do with an ip address.

    As for your router and public ip, just make sure that the public ip is directed to yoru web server.

    Example.  lets say your public ip is 1.1.1.1  and your domain is mycompany.com and your organization is orga.

    Your cert will be *.mycompany.com,
    Your dns entry orga.mycompany.com going 1.1.1.1 
    and going to https://orga.mycompany.com hit your crm box. 

     

  • Mike Hansen Profile Picture
    Mike Hansen 70 on at

    Its working perfect! Thanks a bunch Alex!

Under review

Thank you for your reply! To ensure a great experience for everyone, your content is awaiting approval by our Community Managers. Please check back later.

Helpful resources

Quick Links

Responsible AI policies

As AI tools become more common, we’re introducing a Responsible AI Use…

Neeraj Kumar – Community Spotlight

We are honored to recognize Neeraj Kumar as our Community Spotlight honoree for…

Congratulations to the November Top 10 Community Leaders!

These are the community rock stars!

Leaderboard > 🔒一 Microsoft Dynamics CRM (Archived)

#1
SA-08121319-0 Profile Picture

SA-08121319-0 4

#1
Calum MacFarlane Profile Picture

Calum MacFarlane 4

#3
Alex Fun Wei Jie Profile Picture

Alex Fun Wei Jie 2

Last 30 days Overall leaderboard

Featured topics

Product updates

Dynamics 365 release plans