This white paper describes how to implement a secure RoleTailored client connection to Microsoft Dynamics NAV Server over a wide area network (WAN). The RoleTailored client and Microsoft Dynamics NAV Server can be in the same or separate Active Directory domains. This white paper also discusses some performance benchmarks that you should consider before implementing a WAN connection.
For updates on this process and other information about hosting and WAN connections, see the Microsoft Dynamics NAV Team Blog and search for the terms hosting and performance.
This white paper assumes the following:
- Remote client users do not require the
Classic client. This means that reports that have not been
transformed for the RoleTailored client are not available to remote
RoleTailored client users.
- User accounts are provisioned in an Active
Directory domain, and SQL Server and Microsoft Dynamics NAV Server
are installed on a computer in this domain.
- The administrator who is implementing this
configuration is a member of the domain administrator group in this
- On the computer running Microsoft Dynamics
NAV Server, a DNS entry that resolves to the published server port
on the computer’s firewall exists for Microsoft Dynamics NAV
- If the RoleTailored client or Microsoft
Dynamics NAV Server is behind a firewall, then you must have opened
a port for communication with Microsoft Dynamics NAV Server on the
RoleTailored client computer and published the port on the
Microsoft Dynamics NAV Server computer. The default port number is
- The RoleTailored client and Microsoft
Dynamics NAV Server are configured as described in the Walkthrough:
Installing the Three Tiers on Three Computers topic in the MSDN
This white paper includes instructions for protecting your WAN connections with security certificates. We recommend that you do not implement remote access without security certificates.
Read about the certificate security implementation that is presented in this white paper.
Follow a detailed demonstration of how to set up an environment for testing secure connections over a WAN by using the chain trust configuration.
Learn how to implement security certificates in a production environment.
Determine whether your users fit the performance profile for running the RoleTailored client over a WAN.
This illustration shows how a computer running the RoleTailored client in one Active Directory domain can connect to an instance of Microsoft Dynamics NAV Server in another domain.