Error when installing CRM 2011 on a new server that’s part of a Network Load Balancing IFD environment


One of my customers has a CRM 2011 IFD (Internet Facing Deployment) on a NLB (Network Load Balancing) environment. IFD and NLB were setup and configured correctly. The customer wanted to install a new CRM 2011 server and add it to the NLB enviornment.

When installing CRM 2011 on the new server we got the following error -

The encryption certificate ‘CN=*.contonso.com, OU=Domain Control Validated, O=*.contoso.com’ cannot be accessed by the CRM service account

This error is misleading as you think it’s something to do with the Wildcard certificate missing or not being configured correctly on the Default Website of the new server that we were installing CRM.

To resolve this issue, we performed the following steps to install CRM 2011 on the new server -

  • Disable IFD
  • Disable Claims
  • Install CRM 2011 on the new server
  • Enabled Claims
  • Enabled IFD

 

Comments (3)

  1. Jerry Ritonya says:

    Has anyone found a work around for this issue besided the one mentioned above? You'd think there would be a way to add WFE's to an existing environment without disabling IFD and claims.

  2. Joe says:

    Seems crazy to have to disable CBA and IFD just to add a new CRM server to an organization

  3. AZEagle says:

    We are seeing this same issue when trying to enable CBA on the existing FE servers.