ACSTLH
asked on
401 Unauthorized error 2010 Exchange OWA
Newer 2010 Exchanger server with an OWA redirect. When trying to access OWA with http://mail.xxxx.com or https://mail.xxxx.com I instantly get an: 401 - Unauthorized: Access is denied due to invalid credentials. Using https://mail.xxxx.com/owa still works.
I've done 2010 Exchange installs before with OWA redirection successfully in the past. I've researched this error to no avail. Please assist, thanks in advance.
I've done 2010 Exchange installs before with OWA redirection successfully in the past. I've researched this error to no avail. Please assist, thanks in advance.
See if you can find for us the 401 response in your IIS log file. It will help a lot.
ASKER
Thank you for your resonse, are you looking for this?
2012-06-07 16:02:39 10.38.32.77 GET / - 443 - xx.xxx.xx.xxx Mozilla/5.0+(compatible;+M SIE+9.0;+W indows+NT+ 6.1;+Tride nt/5.0) 401 3 5 62
2012-06-07 16:02:39 10.38.32.77 GET / - 443 - xx.xxx.xx.xxx Mozilla/5.0+(compatible;+M
Yes. The 3 after the 401 is the subcode, so the complete response status is 401.3 . That means that access is denied due to the ACL (i.e. NTFS permissions) on a file on the server somewhere. It's hard to be sure which it will be, but I guess the first thing would be to look at the NTFS permissions for the
C:\Program Files\Microsoft\Exchange Server\V14\ClientAccess\Ow a
folder on the server. What do you have listed? Is there any group that has any of the Deny checkboxes checked?
C:\Program Files\Microsoft\Exchange Server\V14\ClientAccess\Ow
folder on the server. What do you have listed? Is there any group that has any of the Deny checkboxes checked?
ASKER
Authenticated users: Read (not inherited)
System: Full control
Administrators: Full control
Also, I don't even get to a point to enter my username\password when trying to access the site when using the http://mail.xxxx.com or https://mail.xxxx.com Forgot to mention that in the beginning.
owa-perms.PNG
System: Full control
Administrators: Full control
Also, I don't even get to a point to enter my username\password when trying to access the site when using the http://mail.xxxx.com or https://mail.xxxx.com Forgot to mention that in the beginning.
owa-perms.PNG
Then it could be something like the folder containing the logon form:
C:\Program Files\Microsoft\Exchange Server\V14\ClientAccess\Ow a\auth
or the logon form itself within that folder: logon.aspx . Check the NTFS permissions on the file and the folder. They should be similar to what you found before.
C:\Program Files\Microsoft\Exchange Server\V14\ClientAccess\Ow
or the logon form itself within that folder: logon.aspx . Check the NTFS permissions on the file and the folder. They should be similar to what you found before.
ASKER
Same permissions as above.
Do you think it is a file permission issue eventhough I no issues accessing and logging into OWA using the full https://mail.xxxx.com/owa address?
Do you think it is a file permission issue eventhough I no issues accessing and logging into OWA using the full https://mail.xxxx.com/owa address?
Ah, I forgot that. If you created a script file to do the redirection I would check the NTFS permissions on that.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Awarded points to LeeDerbyshire for suggesting NTFS permissions were the problem.