Share
ReportHi,
I am facing issues with configuration of reverse proxy(URL rewrite) to the CRM web page.
I would receive error 401 with subcode 0 when navigate from the reverse proxy server, while accessing the CRM web page URL directly is fine. Switching CRM web site windows authentication to NTLM will resolve the issue but we have the requirement to use Kerberos.
After turning on IIS Trace in CRM server, I notice that the 401 error is triggered by a module called "CRMAuthentication". Hitting the CRM link directly is able to generate the web page but is also generating the same error at the trace logs. Setting the CRM application service account's SPN to HTTP/<FQDN>:<Port> did not help. My setup is verified to be using kernel mode authentication as well, so SPN should technically not be required.
May I know what are the SPN that needs to be configured for the CRM application service and web deployment service? It is classified as may be required with no SPN specified in the microsoft documents.
Any additional advise for the above issue would be much appreciated as well.
Thanks in advance.
*This post is locked for comments
All responses (
Answers (
291,280
