September 2011
Intermediate to advanced
1008 pages
24h 27m
English
After configuring Claims-Based Authentication on CRM, you will need to open the AD DFS application and add a relaying party trust. This is necessary for the AD FS to trust the CRM URLs uses by external users. Each organization has a unique URL that the AD FS needs to trust.
Note
If you have a multi-tenanted environment, every time you add a new organization you will need to manually update the relying part trust from the federation metadata if you want immediate access to your system via IFD, since ADFS only automatically updates this data every 24 hours. You can also do this programmatically or through PowerShell.
1. Open AD FS 2.0 by going to start administrative tools AD FS Management.
Figure 22.44 AD FS ...