Solved

Outlook 2010/2007 prompting for authentication with Exchange 2010

Posted on 2014-02-05
6
492 Views
Last Modified: 2014-02-11
So I did the migration of one of our clients from Exchange 2003 to Exchange 2010 and managed to get mailflow and everything working.
One issue that I have not been able to sort out is the Outlook 2010/2007 random authentication prompts.

When opening Outlook, it would sometimes prompt for your username and password (not always) and proceed to open your mail client and able to read your emails.
While working on Outlook, it would prompt for a username and password again, typing in the username and password would make the box disappear, but later return.

Note, this is not for ALL Outlook clients, it's random and no way I can replicate it by doing something. Exchange Proxy is unticked (users are stationary). Checked the connection status, attached are 2 files, 1 before password, 1 after.
Before:
 Before Password
After:
 After Password
0
Comment
Question by:fulloutput
6 Comments
 
LVL 18

Expert Comment

by:Sushil Sonawane
ID: 39835285
Please check the under IIS on the Exchange server.  Under Autodiscover properties> Directory Security> Authentication Methods> "Integrated Windows Authentication".  must be selected.


Make sure exchange server update with latest service pack and outlook also. You exchange services also started state.

Your exchange installation folder and database and log path folder exclude in antivirus scan.

If still issue is not resolved then please recreate the following directory in iis.


    Autodiscover
    EWS
    RPC
    OAB


The above mention directory authentication method should be Integrated Windows Authentication"
0
 
LVL 4

Expert Comment

by:pcmghouse
ID: 39835337
Please check if your clients are getting the correct URLS "test e-mail auto configuration".
May be one of the links is pointing to the wrong place.

Do you have any public folders?

Then we can troubleshoot from there.
0
 
LVL 2

Author Comment

by:fulloutput
ID: 39835423
I tried running the test email auto config, but it just seems to hang half way through.
Although, what I did see is, the OWA link differs from the one that we actually use externally to access OWA.

The link on test auto config: exchange.domain.com
The link I use to access owa externally: exchange10.domain.com

Would this cause any issues?

Yes, I needed to migrate all public folders as the client uses it extensively.
0
Do email signature updates give you a headache?

Do you feel like you are constantly making changes to email signatures? Are the images not formatting how you want them to? Want high-quality HTML signatures on all devices, including on mobiles and Macs? Then, let Exclaimer solve all your email signature problems today.

 
LVL 63

Accepted Solution

by:
Simon Butler (Sembee) earned 500 total points
ID: 39838670
Sounds like you don't have the URLs configured correctly within Exchange.
You need to correct them to match the SSL certificate. Authentication prompts are also a sign of an SSL certificate issue, such as a name mismatch - basically Outlook cannot cope with the SSL prompt.

Go through my guide here:
http://semb.ee/hostnames

You will need to have a SPLIT DNS system in place.

Simon.
0
 
LVL 11

Expert Comment

by:hecgomrec
ID: 39839332
I think the issue here is with credentials authentications.

Try this:

Opene IIS on the Exchange server and check the following directories under the
default website:
             default web site
             oab
             autodiscover

Under the directory security tab of each of them, click Edit in the Secure
Communications section,  under Client Certificates set to Accept for each of the folders.
Stop an restart IIS.

Post your results.
0
 
LVL 2

Author Closing Comment

by:fulloutput
ID: 39850080
Hi Simon,

I followed your advice and the random authentication prompts were resolved :) However, to rub salt in my wounds, a smartcard prompt started with some of the users, completely random.
I managed to get it sorted by changing the ssl settings of the default, oab and autodiscover sites to Require Cert, and Ignore.

Thanks,
HS
0

Featured Post

Is Your Active Directory as Secure as You Think?

More than 75% of all records are compromised because of the loss or theft of a privileged credential. Experts have been exploring Active Directory infrastructure to identify key threats and establish best practices for keeping data safe. Attend this month’s webinar to learn more.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Utilizing an array to gracefully append to a list of EmailAddresses
Marketers need statistics and metrics like everybody else needs oxygen. In this article we explain how to enable marketing campaign statistics for Microsoft Exchange mail.
In this video we show how to create a Shared Mailbox in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.: First we need to log into the Exchange Admin Center. Navigate to the Recipients >> Sha…
The video tutorial explains the basics of the Exchange server Database Availability groups. The components of this video include: 1. Automatic Failover 2. Failover Clustering 3. Active Manager

919 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

19 Experts available now in Live!

Get 1:1 Help Now