Are you encountering the “ADFS the same client browser session has made CRM” error while integrating Active Directory Federation Services (ADFS) with Dynamics 365 Customer Relationship Management (CRM)? This error can occur when the same browser session is used to access both ADFS and CRM, leading to authentication issues. In this article, we’ll explore the causes and solutions for this error, empowering you to resolve it effectively.
The “ADFS the same client browser session has made CRM error” arises when a user attempts to access CRM using the same browser they used to authenticate with ADFS. ADFS issues a session cookie to the browser during authentication, and it expects that subsequent requests from the same browser will include this cookie. However, if the user opens a new tab or window in the same browser and navigates to CRM, a new session is created, and the ADFS session cookie is not passed along, resulting in the error.
Troubleshooting the ADFS-CRM Integration
1. Clear Browser Cache and Cookies
To resolve the “ADFS the same client browser session has made CRM” error, start by clearing the cache and cookies in your browser. This action removes any conflicting data that may be interfering with the authentication process. Once you have cleared the cache and cookies, close all browser windows and reopen them before attempting to access CRM again.
2. Disable Browser Extensions and Add-ons
Certain browser extensions and add-ons can interfere with ADFS authentication by modifying HTTP headers or blocking cookies. To troubleshoot this issue, temporarily disable all browser extensions and add-ons and then try accessing CRM. If the error no longer occurs, you can re-enable extensions one by one until you identify the culprit.
3. Check ADFS Configuration
Ensure that ADFS is configured correctly to support SSO (Single Sign-On) with CRM. Verify that the ADFS relying party trust is set up with the correct URL for CRM and that the claims rules are configured to pass the necessary attributes to CRM. Also, check that the ADFS token lifetime is set to a reasonable value that allows for sufficient time to complete the CRM login process.
4. Use InPrivate Browsing
InPrivate browsing mode in Microsoft Edge or Incognito mode in Chrome creates a new, isolated browser session that does not share cookies or cache with other sessions. This mode can be useful for troubleshooting the ADFS-CRM integration, as it ensures that no conflicting data from previous sessions interferes with the authentication process.
5. Contact Microsoft Support
If you have tried all the troubleshooting steps outlined above and are still encountering the “ADFS the same client browser session has made CRM” error, you may need to contact Microsoft Support for professional assistance. The Microsoft support team has expertise in resolving ADFS and CRM integration issues and can provide tailored guidance to help you resolve the problem.