Google Groups no longer supports new Usenet posts or subscriptions. Historical content remains viewable.
Dismiss

CRM Live Login using SDK 4.03

2 views
Skip to first unread message

Hugh O'Donnell

unread,
Apr 1, 2008, 4:41:09 PM4/1/08
to
I'm trying to create a web page that creates a Lead via a page on my
own server.

Basically, I'm adapting Jon White's code from this blog:
http://blogs.msdn.com/dynamicscrmlive/archive/2008/02/08/web-lead-import-to-crm-live.aspx

However, I'm having a problem (and it is actually with the CRM Live
SDK v4.03). Hoping someone on here can help.

In the SDK, there is a sample at \server\helpers\cs\idcrlwrapper that
handles the Passport login. I have this working BEAUTIFULLY on my
desktop.

However, when I move it to my server, I get an exception on the
NativeMethods.InitializeEx() call in Initialize(). After lots of
testing, tweaking, and using FileMon (I love that program!), I was
able to figure out the problem was ACL permissions on the server.

It looks like the "Network Service" user is trying to download the
proper DLL for passport authentication, and putting it in C:\Documents
and Settings\All Users\Application Data\Microsoft\IdentityCRL
\production. Yes, my environment is "Production". The problem is
that Network Service does not have rights to create in that location.

I can fix the problem giving the "Network Service" user the rights to
create in that directory, but that seems like a hack and security
issue. I believe I read somewhere that you do not want this code
running under the "Network Service" user.

Can someone please tell me the proper fix for this issue?

Thanks,

Hugh O'Donnell

Shan McArthur

unread,
Apr 1, 2008, 5:54:30 PM4/1/08
to
Have you tried setting up your website in a seperate application pool and
giving it domain credentials instead of using the default network service
credentials?

Shan McArthur - VP, Technology
ADXSTUDIO Inc. | 200 - 1445 Park Street | Regina, SK Canada | S4N 4C5
Tel: 306.569.6502 | Toll-Free: 800.508.7811 ext. 502 | Fax: 306.569.8518
"Hugh O'Donnell" <hughjo...@gmail.com> wrote in message
news:580851b2-4887-48df...@a1g2000hsb.googlegroups.com...

Hugh O'Donnell

unread,
Apr 8, 2008, 12:48:26 PM4/8/08
to
Shan,

Sorry for the delay in my response. Of course your solution will work
(just as my giving Network Service ACL rights). However, to me that
is a bad security practice to have a web app with that high of
priveledges. I don't see ANY reason a web app should need to read /
write data in the C:\Document and Settings folder.

There has to be a better way to do this. Microsoft is selling CRM
Live as a way to have a hosted CRM solution. The target client (as I
see it) is a user who does not run their own servers. So, they will
have a hosted website as well. Most asp.net webhosting vendors will
not allow a user to change the AppPool, credentials, etc. At most,
the user will be able to drop assemblies into their bin directory.

I'd love to hear from the CRM Live team how they see this playing out
in a real-world, hosting solution.

Thanks,

Hugh O'Donnell

0 new messages