Solved

CWA 401.2 Error

Posted on 2009-07-09
2
689 Views
Last Modified: 2013-11-29
When I attempt to access the CWA URL I'm presented with the following
error:
HTTP Error 401.2 - Unauthorized: Access is denied due to server
configuration.
Internet Information Services (IIS)

I have gone through the removal and re-installation of the
Communicator Web Access role multiple times and the issue persists.
The system is a 64-bit Windows 2003 server dedicated to the CWA role;
no other OCS roles are running on this system.  Doing some
troubleshooting I've discovered that if I add the default DOMAIN
\CWAService account to the local Administrators group CWA renders
without an issue and I'm able to log into it without issue.  It is
only when DOMAIN\CWAService is a standard user, which I believe is the
default, is when the issue happens.  This points me in the direction
of a security / permissions issue, but where?

I'm not seeing any events in the event log that would indicate any
type of issue loading the cwaauth.dll ISAPI filter nor am I seeing
anything regarding permission failure.  Running filemon and regmon I
don't see any type of access denied errors.  I'm at a loss as to what
is causing this.  This is a fresh intall of OCS within an Exchange
2007 environment.  Any assistance would be much appreciated.  I don't
really want to run CWA as a local administrator to get this to work.

It should be noted that this is OCS R2.

Thanks.
-matt
0
Comment
Question by:TMCgroup
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
2 Comments
 
LVL 10

Expert Comment

by:abdulwrite
ID: 24903049
IIS 401.2 is pure authentication issue only. Check the authentication mode in IIS 6.0

Reason may be 1 : The service that is used for the IIS application pools on the CWA server was not a member of the RTCUniversalServerAdmins group, which in turn is a member of the local CWA server Administrators group.

0
 

Accepted Solution

by:
TMCgroup earned 0 total points
ID: 26054354
We ended up having to move this to IIS 7 with no resolution on IIS 6.0 after multiple efforts working with MS.
0

Featured Post

Three Reasons Why Backup is Strategic

Backup is strategic to your business because your data is strategic to your business. Without backup, your business will fail. This white paper explains why it is vital for you to design and immediately execute a backup strategy to protect 100 percent of your data.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Welcome to my series of short tips on migrations. Whilst based on Microsoft migrations the same principles can be applied to any type of migration. My first tip is around source server preparation. No migration is an easy migration, there is a…
Have you considered what group policies are backwards and forwards compatible? Windows Active Directory servers and clients use group policy templates to deploy sets of policies within your domain. But, there is a catch to deploying policies. The…
Exchange organizations may use the Journaling Agent of the Transport Service to archive messages going through Exchange. However, if the Transport Service is integrated with some email content management application (such as an antispam), the admini…

730 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question