Mark Minasi's Reader Forum
Mark Minasi's Reader Forum
Home | Profile | Register | Active Topics | Active Polls | Members | Search | FAQ | Minasi Forum RSS Feed
Username:
 Password:
Save Password
Forgot your Password?

 All Forums
 Email, Databases, Sharepoint and more
 Microsoft Dynamics CRM /Dynamics Great Plains
 Active Directory Groups made by CRM install		  New Topic  Reply to Topic
 Printer Friendly
Author Previous Topic Topic Next Topic  

Curt
Moderator

USA
6648 Posts
Status: offline
Posted - 04/19/2012 :  4:48:09 PM  Show Profile  Visit Curt's Homepage  Reply with Quote
Installing MSCRM calls for a new OU for the application to create AD security groups.

PrivReportingGroup
This group provides Privileged Microsoft Dynamics CRM user group for
reporting functions. This group is created during
Microsoft Dynamics CRM Server Setup and
configured during Microsoft Dynamics CRM
Reporting Extensions Setup.

PrivUserGroup
This group provides Privileged Microsoft Dynamics CRM user group for
special administrative functions; including
CRMAppPool identity (domain user or
NetworkService). The users who configure Microsoft
Dynamics CRM Server must be added to this group.

SQLAccessGroup
As tje name implies,All server processes/service accounts that require
access to SQL Server; including CRMAppPool
identity (domain user or NetworkService). Members
of this group have db_owner permission on the
Microsoft Dynamics CRM databases

ReportingGroup
This group pertains to SSRS security with some special features.
All Microsoft Dynamics CRM users are included in
this group. This group is updated automatically as
users are added and removed from Microsoft
Dynamics CRM. By default, all Microsoft Dynamics
CRM Reporting Services reports grant Browse
permission to this group. Microsoft Dynamics CRM
users that are not members of this group cannot use
the reporting feature in the application.


With these groups in mind one can see how a healthy AD and Kerberos functionality will insure that the CRM application server, SQL server and SSRS servers are going to work.
Curt Spanburgh
Microsoft Certified Business Solution Specialist.
Dynamics CRM MVP
Contributing Editor, Windows IT Pro

He that is walking with wise persons will become wise, but he that is having dealings with the stupid ones will fare badly.
Proverbs 13:20


chamezzzz
Honorable But Hopeless Addict

United Kingdom
2297 Posts
Status: offline
Posted - 04/20/2012 :  3:22:10 PM  Show Profile  Reply with Quote
Many thanks Curt.
This is discussed for CRM 4.0 at
http://support.microsoft.com/kb/946677
Is the same true for 2011?
James
Go to Top of Page

Curt
Moderator

USA
6648 Posts
Status: offline
Posted - 04/20/2012 :  3:36:21 PM  Show Profile  Visit Curt's Homepage  Reply with Quote
Yep, same for CRM 2011.
Curt Spanburgh
Microsoft Certified Business Solution Specialist.
Dynamics CRM MVP
Contributing Editor, Windows IT Pro

He that is walking with wise persons will become wise, but he that is having dealings with the stupid ones will fare badly.
Proverbs 13:20


Go to Top of Page

chamezzzz
Honorable But Hopeless Addict

United Kingdom
2297 Posts
Status: offline
Posted - 04/20/2012 :  3:41:51 PM  Show Profile  Reply with Quote
Great stuff..I hope all is well Curt.....currently migrating from 4.0 to SalesForce.
Not happy..but not my decision.

Another separate system to administrate.

Salesforce will *add value* - I am told

James
Go to Top of Page
  Previous Topic Topic Next Topic  
 New Topic  Reply to Topic
 Printer Friendly
Jump To:
Mark Minasi's Reader Forum © 2002-2011 Mark Minasi Go To Top Of Page
This page was generated in 0.08 seconds. Snitz Forums 2000