Solved

CWA 401.2 Error

Posted on 2009-07-09
2
687 Views
Last Modified: 2013-11-29
When I attempt to access the CWA URL I'm presented with the following
error:
HTTP Error 401.2 - Unauthorized: Access is denied due to server
configuration.
Internet Information Services (IIS)

I have gone through the removal and re-installation of the
Communicator Web Access role multiple times and the issue persists.
The system is a 64-bit Windows 2003 server dedicated to the CWA role;
no other OCS roles are running on this system.  Doing some
troubleshooting I've discovered that if I add the default DOMAIN
\CWAService account to the local Administrators group CWA renders
without an issue and I'm able to log into it without issue.  It is
only when DOMAIN\CWAService is a standard user, which I believe is the
default, is when the issue happens.  This points me in the direction
of a security / permissions issue, but where?

I'm not seeing any events in the event log that would indicate any
type of issue loading the cwaauth.dll ISAPI filter nor am I seeing
anything regarding permission failure.  Running filemon and regmon I
don't see any type of access denied errors.  I'm at a loss as to what
is causing this.  This is a fresh intall of OCS within an Exchange
2007 environment.  Any assistance would be much appreciated.  I don't
really want to run CWA as a local administrator to get this to work.

It should be noted that this is OCS R2.

Thanks.
-matt
0
Comment
Question by:TMCgroup
2 Comments
 
LVL 10

Expert Comment

by:abdulwrite
ID: 24903049
IIS 401.2 is pure authentication issue only. Check the authentication mode in IIS 6.0

Reason may be 1 : The service that is used for the IIS application pools on the CWA server was not a member of the RTCUniversalServerAdmins group, which in turn is a member of the local CWA server Administrators group.

0
 

Accepted Solution

by:
TMCgroup earned 0 total points
ID: 26054354
We ended up having to move this to IIS 7 with no resolution on IIS 6.0 after multiple efforts working with MS.
0

Featured Post

NAS Cloud Backup Strategies

This article explains backup scenarios when using network storage. We review the so-called “3-2-1 strategy” and summarize the methods you can use to send NAS data to the cloud

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Remote Apps is a feature in server 2008 which allows users to run applications off Remote Desktop Servers without having to log into them to run the applications.  The user can either have a desktop shortcut installed or go through the web portal to…
Know what services you can and cannot, should and should not combine on your server.
The Email Laundry PDF encryption service allows companies to send confidential encrypted  emails to anybody. The PDF document can also contain attachments that are embedded in the encrypted PDF. The password is randomly generated by The Email Laundr…
Finds all prime numbers in a range requested and places them in a public primes() array. I've demostrated a template size of 30 (2 * 3 * 5) but larger templates can be built such 210  (2 * 3 * 5 * 7) or 2310  (2 * 3 * 5 * 7 * 11). The larger templa…

803 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question