如何通过CRM 2011进行身份验证? [英] How to Authenticate to CRM 2011?
问题描述
我想建立一个简单的网站,让客户可以下订单和查看产品。此数据是我的Microsoft Dynamics CRM 2011环境。
I would like to build a simple web site where a customer can place orders and view products. This data is my Microsoft Dynamics CRM 2011 Environment.
此数据是特定于客户的,因此我需要有关登录用户的信息。
用户凭据为存储在CRM 2011中。使用这些凭据,用户可以登录到此新的自定义网站。他们不应该有权访问crm环境。
This data is customer specific, so i need information about the user which is logged in. User credentials are stored in CRM 2011. With these credentials users may login to this new custom website. They should not have access to the crm environment itself.
我应该如何为此网站设置身份验证?我可以在crm 2011中查询用户信息吗,应该设置ADFS应用程序还是其他?
How should i setup authentication for this web site? Can i just query the user information in crm 2011, should I setup a ADFS application or something else?
推荐答案
我们刚刚实现了一些功能对于我的客户来说也是如此。我们大约有5000位用户需要查看和编辑CRM数据,但是由于他们需要更新/查看的数据非常少,我们不想为完整的CRM用户许可证付费。所有用户都已经在Active Directory中,因此我们为每个用户购买了员工自助服务客户端访问许可证(ESS CAL)许可证。这种类型的用户许可证无法访问CRM UI,因此他们实际上无法登录到CRM本身。
We just implemented something similar for a client of mine. We had around 5000 users that needed to be able to view and edit CRM data, but we didn't want to pay for the full CRM user licenses since the data they needed to update / view was rather small. All of the users were already in Active Directory, so we purchased Employee Self Service Client Access License (ESS CAL) licenses for each of the users. This type of user license doesn't have access to the CRM UI, so they could never actually log into CRM itself.
我们在网站上使用了AD身份验证,是CRM超级用户帐户的应用程序池用户。在用户会话的初始负载上,我们从上下文中获取用户名,并在CRM中查找用户的SystemUserId,然后将其与服务代理结合使用,以仅访问和更新允许用户访问的数据。效果很好。
We used AD authentication on the website, with an app pool user that was a CRM super user account. On the initial load of the users's session, we grabbed the username from the context, and looked up the SystemUserId of the user in CRM, then used impersonation with the Service Proxy to only access and update the data that the user was allowed to. It worked really well.
这篇关于如何通过CRM 2011进行身份验证?的文章就介绍到这了,希望我们推荐的答案对大家有所帮助,也希望大家多多支持IT屋!
