Dynamics CRM: Verwenden von ADFS über IAG als Authentifizierungsmethode für externe Zugriffe

  • Article

Für interne Zugriffe verwendet Dynamics CRM das wohlbekannte AD (Active Directory), für externe Zugriffe gibt es die Möglichkeit ADFS mittels Internet Application Gateway zu verwenden.

Hierfür wurde kürzlich ein Whitepaper veröffentlicht.

 

Der Abstract lautet wie folgt:

By default, an on-premise implementation of Microsoft Dynamics CRM 4.0 leverages Active Directory (Integrated Windows) Authentication to accommodate access by internal users. However, many businesses also require the ability to provide external users with access to the highly sensitive information that is stored in the CRM system and to accommodate this access without having to create Active Directory trusts. By using a combination of IAG and Active Directory Federation Services (ADFS) to establish an authentication gateway, companies can provide access to CRM resources by any identity from any organization, from any computer, complete with strong authentication and full Single Sign On from the end user to the internal CRM system with a full audit trail (including username and source IP). This white paper is designed to : - Explain the business need and common business scenarios for using ADFS and IAG - Summarize the functionality and benefits associated with using ADFS - Summarize the functionality and benefits associated with using IAG - Explain the architecture associated with an ADFS solution for Microsoft Dynamics CRM that leverages IAG - Illustrate the solution architecture by providing and describing a sample deployment - Summarize the process for and provide high-level guidance on implementing an ADFS solution for Microsoft Dynamics CRM by using IAG

 

Das White Paper finden Sie hier:

https://www.microsoft.com/downloads/details.aspx?displaylang=en&FamilyID=47ee7f73-6059-4b20-a305-1b8b2b23f0e9

 

 

ADFS = Active Directory Federation Services (mehr dazu hier: https://www.microsoft.com/WindowsServer2003/R2/Identity_Management/ADFSwhitepaper.mspx)

 

IAG = Internet Application Gateway (mehr dazu hier: https://www.microsoft.com/Forefront/edgesecurity/iag/en/us/overview.aspx)

 

____________________________________

Christian Hrubesch, Microsoft Dynamics