Solved

Outlook Web Access users get "The Local Security Authority cannot be contacted" if they mistype password

Posted on 2006-07-03
4
1,236 Views
Last Modified: 2012-05-05
I've got a strange situation here with Outlook Web Access on a new Exchange server I've just set up. When a user logs in to  Outlook Web Access with their correct username and password, they're allowed into their email. If they mistype their username, they're prompted again to enter the correct username. However, if they get their username correct by mistype their password, the get stuck with a "The Local Security Authority cannot be contacted" page. At this point the browser (any browser) considers the log in successful and thinks the user is logged into the site so the user cannot retry their password without closing all browser windows and exitting the browser. So somehow, the IIS server is returning an authentication succeeded message to the browser though the authentication is incorrect, and the OWA app won't load.

This is a brand new Exchange 2003 Enterprise Edition (SP2) server running on Windows 2003 Standard R2. It's a standalone Exchange server so there are not separate front end and back end servers. This is the only other server in the domain (which is also new) besides the domain controller itself. I also have another domain in the same forest running Exchange in a similar configuration (though it's older) and it does not have this problem.

While I wish I could just advise my users to be careful entering passwords, it is irritating for them when they do make a mistake because they have to close all of their browser windows. Additionally, I am afraid this may mean there is another configuration issue causing this that might manifest itself in other, more terrible ways in the future. However, there are no symptoms of problems whether the users connect to the Exchange server with Outlook (over regular Exchange protocol or RPC over HTTPS). The only other symptom I can think might be related is that Internet Explorers cannot use the password changing form (IISADMPWD) to change their passwords, but Firefox users can. IE users get an "Object Required" error. I don't know if this is related but it is curious.
0
Comment
Question by:Lowflush
4 Comments
 

Author Comment

by:Lowflush
ID: 17033622
Okay, I sort of fixed this on my own:

I disabled "Integrated Windows Authentication" on the "Exchange" virtual server. Now if users mistype their passwords they are reprompted.

Howerver, Integrated Windows Authentication is enabled on my other server and it doesn't have a problem. I'm leaving the question open and the points on the table as I am curious if anyone knows why that form of authentication is causing that problem, and if it's indicative of another misconfiguration.
0
 
LVL 104

Accepted Solution

by:
Sembee earned 175 total points
ID: 17033967
Are you using SSL?
Integrated Authentication normally allows pass through authentication to take place. If I am on one of my servers and browse to the OWA I will normally go straight in without any prompts.
That can be stopped by using forms based authentication, or the full URL of the server (http://servername.domain.com instead of http://servername)

Simon.
0

Featured Post

What Security Threats Are You Missing?

Enhance your security with threat intelligence from the web. Get trending threat insights on hackers, exploits, and suspicious IP addresses delivered to your inbox with our free Cyber Daily.

Join & Write a Comment

Find out how to use Active Directory data for email signature management in Microsoft Exchange and Office 365.
Following basic email etiquette rules will help you write a professional email and achieve a good, lasting impression with your contacts.
In this video we show how to create a Resource Mailbox in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.: Navigate to the Recipients >> Resources tab.: "Recipients" is our default selection …
In this Micro Video tutorial you will learn the basics about Database Availability Groups and How to configure one using a live Exchange Server Environment. The video tutorial explains the basics of the Exchange server Database Availability grou…

708 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

9 Experts available now in Live!

Get 1:1 Help Now