In the newly redesigned Microsoft Dynamics CRM for Outlook Configuration Wizard, System Administrators can enable multi-factor authentication (MFA) through the OAuth 2.0 Framework. OAuth 2.0 is an open framework for authorization that lets users provide access tokens, instead of credentials, to access their data that is hosted by a given service provider (such as CRM). Using MFA can help make client authentication more secure, especially for mobile users. CRM Online and on-premises versions of Microsoft Dynamics CRM 2015 can take advantage of MFA; Microsoft Dynamics CRM 2015 on-premises requires at least Windows Server 2012 R2. CRM Online automatically uses OAuth.
If you have upgraded your authentication server to use OAuth prior to installing CRM 2015 for Outlook, CRM 2015 for Outlook will automatically check for and use OAuth for MFA. Users will see the OAuth sign-in form the first time they use CRM 2015 for Outlook.
If you upgrade your authentication server to use OAuth after rolling out CRM 2015 for Outlook, you have two options to set CRM 2015 for Outlook to use OAuth.
- Reconfigure CRM for Outlook on all computers. Run the Microsoft Dynamics CRM for Outlook Configuration Wizard and remove and re-add your organization.
-- OR --
- Use Group Policy to update the following registration key:
AuthenticationProvider to 0
After the registry change, CRM 2015 for Outlook will automatically check for and use OAuth for MFA.