One of my customers has a CRM 2011 IFD (Internet Facing Deployment) on a NLB (Network Load Balancing) environment. IFD and NLB were setup and configured correctly. The customer wanted to install a new CRM 2011 server and add it to the NLB enviornment.
When installing CRM 2011 on the new server we got the following error -
The encryption certificate 'CN=*.contonso.com, OU=Domain Control Validated, O=*.contoso.com' cannot be accessed by the CRM service account
This error is misleading as you think it’s something to do with the Wildcard certificate missing or not being configured correctly on the Default Website of the new server that we were installing CRM.
To resolve this issue, we performed the following steps to install CRM 2011 on the new server -
- Disable IFD
- Disable Claims
- Install CRM 2011 on the new server
- Enabled Claims
- Enabled IFD