000021722 - Microsoft Outlook Web Access (OWA) authentication prompt loops when SecurID protected using Microsoft Internet Security and Acceleration (ISA) Server 2004

Document created by RSA Customer Support Employee on Jun 16, 2016Last modified by RSA Customer Support Employee on Apr 21, 2017
Version 2Show Document
  • View in full screen mode

Article Content

Article Number000021722
Applies ToMicrosoft Windows Server 2003
Microsoft Windows 2000 SP4
Microsoft Outlook Web Access (OWA)
Microsoft Internet Security and Acceleration (ISA) Server 2004
Using Microsoft Internet Security and Acceleration (ISA) to protect Microsoft Outlook Web Access (OWA) with SecurID
IssueMicrosoft Outlook Web Access (OWA) authentication prompt loops when SecurID protected using Microsoft Internet Security and Acceleration (ISA) Server 2004
User successfully authenticates using SecurID, but then the Microsoft Exchange login prompt loops
CauseThe RSA cookie is not being forwarded to the OWA server, so the Authentication is not actually completed
ResolutionTo correct this issue, use the ISA Manager to find the Web Listener that is defined for OWA. Then go to Properties --> SecurID, and check the "Send RSA Cookie to upstream server" checkbox. Apply and activate the change.

If this doesn't work go the the "To" tab and check the box "Forward the original host header instead of the actual one". Apply and activate the change.
Legacy Article IDa24752

Attachments

    Outcomes