Outlook Anywhere NTLM with ISA 2006, AutoDiscover failing, isa denying the url (Exchange 2013

Hi all,

we are trying to get outlook anywhere working using NTLM, at the moment im stuck on autodiscover failing on my ntlm rule.

Rule Settings:-
From: Anywhere
To: Internalmail.domain
Certificate: Valid GoDaddy
Authentication: HTTP Autentication, only Integrated Checked
Redirect all HTTP to HTTPS
Public Name: autodiscover.domain.co.uk, mail.domain.co.uk
Paths: /unfiedmessaging/*,/rpc/*,/public/*,/OAB/*,/ews/*,/AutoDiscover/*

NTLM is set on anywhere for the exchange 2013 server

testconnectivity.microsoft.com returns these errors
Attempting to send an Autodiscover POST request to potential Autodiscover URLs.
 	Autodiscover settings weren't obtained when the Autodiscover POST request was sent.
	Additional Details
Elapsed Time: 430 ms.
	Test Steps
	The Microsoft Connectivity Analyzer is attempting to retrieve an XML Autodiscover response from URL https://autodiscover.domain.co.uk/autodiscover/autodiscover.xml for user test2013@domain.co.uk.
 	The Microsoft Connectivity Analyzer failed to obtain an Autodiscover XML response.
 	 Tell me more about this issue and how to resolve it
	Additional Details
An HTTP 403 error was received because ISA Server denied the specified URL.
Headers received:
Connection: close
Pragma: no-cache
Content-Length: 2024
Cache-Control: no-cache
Content-Type: text/html
Elapsed Time: 430 ms.

Open in new window

Who is Participating?
awilderbeastConnect With a Mentor Author Commented:
turns out my ISA configuration was correct, i needed some exchange configuration that MS sorted for me
Mahesh SharmaCommented:
Probably you may try changing authentication delegation in the isa connection to basic authentication
awilderbeastAuthor Commented:
but wont that break it, with me wanting to use NTLM?
Making Bulk Changes to Active Directory

Watch this video to see how easy it is to make mass changes to Active Directory from an external text file without using complicated scripts.

awilderbeastAuthor Commented:
i tried it anyway and it failed
Mahesh SharmaCommented:
What about authentication
Is it for All user or All Authenticated Users
awilderbeastAuthor Commented:
auth is set to all authenticated users
Mahesh SharmaCommented:
Try with All Users & test it out
awilderbeastAuthor Commented:
i have done, same error both times, apart from with all users, all traffic goes as anon. with auth on, the last denied entry comes through as the user
awilderbeastAuthor Commented:
as above
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.