When the Microsoft Dynamics CRM 2011 deployment is configured for Internet Facing Deployment (IFD) using Active Directory Certificate Services (ADFS), users may receive the following error when attempting to configure the Microsoft Dynamics CRM Outlook client to the external web address:
"Cannot connect to Microsoft Dynamics CRM server because we cannot authenticate your credentials. Check your connection or contact your administrator for more help."
When reviewing the configuration log, the following exception is also captured:
Error connecting to URL: https://crmorg.domain.com/XRMServices/2011/Discovery.svc Exception: System.ServiceModel.EndpointNotFoundException: There was no endpoint listening at http://adfs.domain.com/adfs/services/trust/13/username that could accept the message.
However, users may still be able to access the external URL through a web browser without error.
The /adfs/services/trust/13/username endpoint may be enabled. When this endpoint is enabled, the client will be unable to reach the usernamemixed and kerberosmixed endpoints, which causes authentication to fail.
Disable the /adfs/services/trust/13/username endpoint and restart the ADFS service. To perform this action, please see the below steps:
Open the AD FS Management Console
In the left navigation pane, expand Service, and then click Endpoints.
In the endpoint list, locate and right-click the /adfs/services/trust/13/username endpoint
Restart the AD FS service.