Recently we were confronted with the following situation:
?Logon request for CRM 2011 IFD is not redirected to CRM from the external Endpoint ADFS.?
No further useful error messages.
This is because you are using an "-" or an "number" in the auth endpoint.
We could address this behavior, by creating a new DNS record named auth.yourcloud.de (and updating all host files):
- Run through the IFD wizard in Deployment Manager and change the auth URL to auth.yourcloud.de
- In ADFS, open the properties on the relying party for the external (IFD) CRM endpoint, then update the URL from auth-2.yourcloud.de (or auth2.yourcloud.de) to auth.yourcloud.de
- Close the properties and right-click on the relying party and choose update federation metadata.
This information is also included in the new version of the Microsoft Dynamics CRM 2011 and Claims-based Authentication.doc, that is available here: http://www.microsoft.com/downloads/en/details.aspx?FamilyID=9886ab96-3571-420f-83ad-246899482fb4
Note: Please always download the latest version of this document to be sure that you have all current know information.
More additional info:
AD FS 2.0 Content Map Wiki Page (http://social.technet.microsoft.com/wiki/contents/articles/2735.aspx).