Shan McArthur's Blog

Microsoft has released an updated component for SharePoint 2013 that allows you to store documents in SharePoint and relate them to CRM entities.  One of the features of CRM 2011 has been the ability to relate SharePoint document libraries to CRM data, but it was only for SharePoint 2010.  This updated component now officially supports SharePoint 2013.  This article will show you how to install and configure it.

Ever clicked on a mailto: link in an email in Outlook on Windows 8 and get taken to the native mail client?  Do you want to switch the default email client to outlook?

I want to share a recent experience of mine that really helped me see the real value of having a Dynamics Partner Advantage Plan and a good relationship with your Service Account Manager (SAM).

In one of my previous blog articles, I demonstrated how to build a demonstration or development environment for Microsoft Dynamics CRM 2011 using Windows Azure Virtual Machine technology.  Once you get a basic virtual machine installed, you will likely want to back it up, or clone it.  This article will show you how to manage your virtual machines once you get them set up.

Windows Azure released a new feature for Virtual Machines this spring.  This is significant in that the disks that back the virtual machines are now durable, where the VM Role machines did not have a durable hard disk.  A durable hard disk means that it won't be blown away when the Azure Fabric Controller performs maintenance on your machine.  The new Azure disks are now stored in blob storage which has redundant replicas and even geo-distributed backups.  This blog article covers how to install and configure a new virtual machine for a demonstration or development environment for Microsoft Dynamics CRM 2011.

This spring Microsoft released some important changes to Windows Azure.  One of the new features is Azure Virtual Machines.  These virtual machines are full virtual machines that are durable and now make it possible to host some of your business applications in the Azure data center that were not possible before.  Creating a new virtual machine is very straight forward using the management console of Windows Azure and it will spin up a new virtual machine for you in just a few minutes.  Once that machine is ready for you, your next step will be to install your custom software and configure the machine to suit its role.  To do that you will have to transfer files to the Azure virtual machine and this blog article will show you a quick and easy way to do that.

Windows Azure has introduced some new data centers in North America this spring.  I wanted to know which was the best data center to host my Azure sites that are connecting to CRM Online.  I couldn't get an answer out of any of my CRM MVP buddies or the CRM product team so I decided I would do a little testing on my own to determine what I should use as a strategy.  I dediced to spin up a sample Azure website then RDP to the server and browse to the /tools/diagnostics/diag.aspx url of my CRM Online subscription to give me the raw performance numbers.  This tool can be used with any CRM deployment and gives a few interesting performance numbers.  There are two real important numbers that would affect performance of the Azure sites using CRM Online - latency and bandwidth.  It is considered that CRM would need to be better than 150 ms of latency to be usable to an end user and it would require more than 50KB/s to be usable.  Those assessments are for an end user browser not the SDK, but they do provide a guideline.

It looks like the current CRM Online data center that is used to host my organization is very close to the new Azure East US data center.  Notice that from a performance standpoint, there is a 1000% difference between the West US and East US data center.  This demonstrates to me that it was well worth my effort to measure this and to consider this in my Azure deployments.  Please note that these were a one-time test, all done at approximately the same time.  The performance numbers may change over time, especially as CRM Online moves to the new DR data centers.

We experienced some significant problems with Live ID earlier this week that was eventually traced to a bad Live ID logon in the CRM email router.  The Live ID team has recently added some additional security logic to their service that will block all authentication from an IP address that exceeds a high threshold of failed logon attempts.  Most corporations use a firewall that proxies all outbound web requests over a single IP address.  This means that if you reach those thresholds, no user in your organization will be able to authenticate using Live ID, effectively locking you out of all Live ID-based applications such as CRM Online, Windows Azure Management Console, CustomerSource and PartnerSource websites, the MPN website, and Hotmail.  The root of my problem is that the CRM Email router does not have an internal authentication failure threshold and will continuously try to reauthenticate until you change the credentials that it uses.  The Live ID team showed me a report where I had 150,000 bad logon attempts from my IP address in a single day.

The symptom that the end user will see is that when they try to log onto Live ID, they will be presented with an additional Captcha challenge.  They will attempt to use the captcha screen to authenticate probably about 3 or four times, with the first three wondering if they got the extremely cryptic captcha answered correctly or if they are perhaps not really humans.  When that Live ID threshold is reached, you don't get a message stating that the threshold is reached - you keep getting prompted for captchas until you just give up.

The resolution is to track down which application in your network is causing the issues.  To do that, start by using nslookup and look up all IP addresses for the doman name login.live.com.  Since this traffic is SSL, you have to use the IP addresses and just look for outbound https sessions to any of the addresses.  You should be able to spot the activity pretty quickly.  From there you can locate the internal machine that is responsible for that activity then use netstat to identify the process.  If it has the CRM Email Router installed, I would start by validating all of the Live ID logons in use.

The moral of the story is that Live ID is really not good for business authentication.  I was unable to get support through standard channels and had to resort to some gracious people who picked up an email of mine on the Azure MVP alias and forwarded it to the Live ID team on my behalf.  Those guys were super and helped me identify the problem quickly.  I was unable to open a ticket with partner support nor have a case escalated because it is Live ID not CRM or Azure that was failing.  I had one heated argument with a support person who stated that the problem was a misconfiguraiton of my network because Live ID works from another location for me - I was not able to get him to accept that the problem was probably a security block in Live ID.  If you are using CRM Online, I highly recommend that you use the version of CRM Online that is associated to an Office 365 subscription.  At least with that you can federate with your own domain and have full control of user authentication.

If you are running the CRM Email Router in your network and routing CRM Online emails, I would highly recommend that you put that on a machine that is using a separate IP address than your standard outbound proxy so that any blockages from that device will not affect the rest of your network from using Live ID services.  I also highly recommend that you disable password changes on any Live ID account that you use with the CRM Email router until such a time as Microsoft fixes the authentication bug that can trigger the Live ID block.

Microsoft released Update Rollup 8 for CRM 2011 yesterday.  While you are reading this you can download it from this url:
http://www.microsoft.com/en-us/download/details.aspx?id=29692

The release notes for it can be reviewed here:
http://support.microsoft.com/kb/2600644

The rollup cannot be installed on a CRM 2011 server that is either RTM or is using a rollup that is less than 6.  Microsoft baselined their CRM with Update Rollup 6, which is an uninstallable rollup.  They re-released an installer that has CRM 2011 with UR6 slipstreamed into the installer.  If you are installing a new CRM environment I recommend you download this updated installer.  If you are using a CRM prior to UR6 you will first have to install UR6 prior to installing UR8.  Once you have a CRM with at least UR6 installed you can then install UR8.  You can install UR8 directly on the UR6 server or on top of UR7 if you had updated your server previously.  UR8 is also uninstallable. 

This article will demonstrate how to use the CRM Connection Dialog that comes with the CRM SDK to connect to your CRM organization from a WPF application.