Are you trying to connect to Microsoft Dynamics CRM from Scribe Insight and getting the error message “ID3242: The security token could not be authenticated or authorized”?
I recently had this issue at a client and we spent some time trying to resolve it based on many other posts, most of which referred to Active Directory Federation Services (ADFS) configuration, audience permission settings and other suggestions. In our case, none of these things seemed to be the problem. Our connections were working fine a few days earlier and so we looked at what had changed. Turned out the certificates were about to expire and some work was happening related to that as well as an ADFS upgrade taking place. Previously, our connection to Dynamics CRM was defined with a domain level login like below:
This was working fine but suddenly it failed with the ID3242 error message. My account was fine and I could still access Dynamics CRM through the browser just fine but Scribe would not connect for anyone. To resolve the issue it was a very simple change. It seems that with the upgrade of ADFS it now required the UPN (user principal name / MSDN – User Name Formats) login in order to authenticate. That is simply going from the domain login to the email address like this:
Another option that worked was to use the Down-Level logon name (Domainusername)
If you receive this error while trying to connect Scribe or anything else that consumes the Dynamics CRM services, give these suggestions a try and maybe you’ll be back up and running a little quicker. I hope this helps!
Did you know? Microsoft Dynamics CRM 2016 has been released! Check out the latest Release Preview Guide for all the latest features, and view the Dynamics CRM Roadmap at Microsoft’s new site http://crmroadmap.dynamics.com or read our blogs on Microsoft Dynamics CRM 2016 release. If you are looking for support for Microsoft Dynamics CRM, RSM offers a full range of services from implementation and optimization to development and support. We can also help install updates or make configuration changes. Contact our professionals for more information on our services at 855.437.7202 or via email at email@example.com.
If you like these insights, subscribe to our Dynamics Community News publication.
By: Josh Thompson – Minnesota Microsoft Dynamics CRM Partner