Link to home
Start Free TrialLog in
Avatar of Sander Stad
Sander StadFlag for Netherlands

asked on

Authentication with OWA login does not work correct redirect

At my company we have an intranet website. Recently we enabled OWA with exchange so people have to logon onto the intranet website using the exchange form based login.

It is configured to go to a specific file after the login is done. The file is a webpage with a frame for a few webpages including the webmail.

When people login with a wrong password they still get the redirection to the index file of the intranet website. When they click on the webmail button they get an error saying that their credentials are wrong. I understand the last one, no rocket science.
But what I don't understand is that when somebody logs in with a wrong password that the user is forwarded to the index page of the intranet website. People should not get that page with incorrect credentials.

The url of the intranet site is this: https://intranet.esloo.nl/exchweb/bin/auth/owalogon.asp?url=https://intranet.esloo.nl/index2.php
Just click the "Aanmelden" you'll get into the intranet. Now click on "WEBMAIL" and the error appears as supposed to.

In my mind it can be solved in two ways:
1.  When people put in incorrect credentials they're returned to the login page with an error message stating their credentials are incorrect.
2. I check in the index page of the intranet website if they get a cookie or a session variable from the exchange server. If not the user is forwarded to the login page with an error like the one above.

I've been googling for a while now trying to find a solution for both ways but could not find anything.

Does anybody have an idea how to solve this problem.

Thanx in advance.
Avatar of MATTHEW_L
MATTHEW_L

I think this is happening because you are chaning the location that the user goes after login.  If you leave that as the default Exchange location that is what powers the error situations such as invalid passwords etc, and dumps the user back at the OWA login page with the error message in red text.  I would try to use the cookie idea.
Avatar of Sander Stad

ASKER

And that's where the problem starts, you can't really change the files of OWA. Only the layout.
I really don't know how to create and destroy a cookie in conjunction with OWA.

Do you have an example.
ASKER CERTIFIED SOLUTION
Avatar of MATTHEW_L
MATTHEW_L

Link to home
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Start Free Trial