We ran into an authentication issue with Microsoft CRM 2011 using ADFS/IFD running Update Rollup 11v2. After being installed, the external endpoint would no longer display, providing the following error:
The error log from the event viewer showed the following error (Could not find GUID for Server) immediately before even receiving the ADFS login prompt:
When Update Rollup 11v2 is removed and, CRM functions normally. No errors. Reinstall Update Rollup 11v2 and the same issue as above occurs. A workaround to this issue is changing the Anonymous Authentication identity from specific user (IUSR) to Application pool identity. Steps are below:
On the CRM server, open the Internet Information Services (IIS) Manager
In IIS Manager, click the CRM site
In the Features View, double-click Authentication
Select Anonymous Authentication , and then click Edit in the Actions pane
In the Edit Anonymous Authentication Credentials dialog box, click the Application pool Identity , and then click Ok:
Perform an IISRESET on CRM and ADFS servers. Now you can browse the ADFS endpoint for External!
Performing this change (recommended by Microsoft support) makes ADFS/IFD endpoint for Microsoft Dynamics CRM 2011 work with Update Rollup 11v2. Reverting this change breaks CRM when Update Rollup 11v2 is installed.
Special thanks to Gage Pennisi, my young apprentice, for identifying and resolving the issue.
Using the Microsoft CRM 2011 Dynamics Outlook client, we detected a weird issue after applying Update Rollup 8. The issue appeared to be related to JSCRIPT on an activity form. After reviewing each activity types form for onload or onchange JScript, then disabling, the issue below was still appearing:
The error did not provide much details, neither did a CRM platform or Outlook Client trace. It turns out that the IE settings mask the real error message. Also note, that Outlook Client is using the IE Settings to connect to the CRM Server. Additionally, the problem DOES NOT OCCUR USING INTERNET EXPLORER – AKA CRM WebClient.
Inside internet explorer options, click the advanced tab, under browsing uncheck the following boxes:
Now we can see the true error message:
The key in the error message was related to the masterWindow Function. This is an internal function to the Microsoft CRM Platform and is related to how IE Frame window is displayed within the outlook client.
After further inspection of the HTML/Script being generated (using F12 for Developer Bar) and Visual Studio debugger attached to the Outlook Process for Script Errors, we saw specific calls related to gathering and updating Metrics via the Microsoft Customer Experience Improvement Program.
Microsoft gathers Metrics (not goals) about your CRM system and you have the option to opt out during your CRM installation.. It turns out the workaround is opting out, which resolves the error until a hotfix or future rollup can be provided (link to fix will be updated in the future).
Step 1: From Settings, CRM Administration, Select Privacy Preferences
Step 2: Disable Participation in the Customer Experience Improvement Program:
When importing solutions from other systems (particularly advanced systems with tons of custom entities) you will receive an error message not allowing the import of the solution. If you download and open the error message, in the XML you will see that optionset values (picklists) fail. Even more specifically, left over optionsets from CRM 1.0/1.2 releases as well failing due to NULL labels.
The fix for this issue was a manually workaround deleting the values from the XML and reimporting the XML for the option set minus only. Thanks to Microsoft Support, we now have a hotfix available for those who cannot wait for the upcoming CRM 2011 Rollup 7. The KB Article #is 2651616 and has not yet been published at this time.
You will have to request this download from Microsoft support directly.