OWA HFED integration error with RSA SecurID Access
Originally Published: 2019-04-08
Article Number
Applies To
RSA Product/Service Type: Cloud Authentication Service
Issue
However users cannot login to OWA from the application portal: The following message is seen:
Unsuccessful logon
Cause
Workaround
- Login to the Administration Console and navigate to Applications > My Applications > Add an Application > Create From Template > Choose HTTP Federation Proxy
- Input a Name for your application and click Next Step.
- Select Connection Method as Manual and click Next Step.
- In the Connection Profile section enter:
- Logon Form URL: https:<your-OWA-server>/owa/authlogon.aspx
- Logon Form Action: https://<your-OWA-server>/owa/auth.owa
- Logon Form Fields and Input Value Types:
| Identifier | Name |
Purpose
| Value |
|---|---|---|---|
| isUtf8 | Use Form Value | ||
| passwordText | passwordText | Constant Value | |
| destination | Use Form Value | ||
| password | password | Password | |
| forcedownlevel | Use Form Value | ||
| flags | Use Form Value | ||
| username | username | Username |
- In Failure Detection enter Indicator: VISIBLE_TEXT, Criteria: Does Not Contain, and Value: <string OWA returns for successful login>. For German, for example, this string is "the Postfach wird geoffnet"
- Click Next Step.
- In the Proxy Settings create two Web Servers, as follows:
- Proxy Hostname: help-outlook-com.<your-protected-domain-name>, Real Hostname: help outlook.com, Rewrite Rules: Substitute "s|help.outlook.com|help-outlook-com.%DOMAIN_NAME%|qin"
- Proxy Hostname: owa-hfed.<your-protected-domain-name>, Real Hostname: <your-OWA-server>, Rewrite Rules: Substitute "s|help.outlook.com|help-outlook-com.%DOMAIN_NAME%|qin"
- Custom Headers: Check Verify Certificates checkbox and click Next Step
- Set the User Access and Portal Display sections as desired.
- Save and publish.
Related Articles
RSA Authentication agent for web not allowing voice mails to be sent to OWA user when enabled Number of Views Additional screen shots for steps configuring Outlook Web Access (OWA) Single-Sign On (SSO) Number of Views Microsoft Outlook Web Access 2013 - HFED SSO Agent Configuration - SecurID Access Implementation Guide Number of Views Digitally signed email does not display when using Microsoft Outlook Web Access (OWA) Number of Views What are the software requirements for RSA Authentication Agent 5.3 to protect OWA using SSO? Number of Views
Trending Articles
RSA Authentication Manager Upgrade Process RSA Release Notes for RSA Authentication Manager 8.8 RSA RADIUS Server service failed to start in the RSA Authentication Manager 8.1 Operations Console Microsoft Entra ID External MFA - Relying Party Configuration Using OIDC - RSA Ready Implementation Guide RSA Release Notes: Cloud Access Service and RSA Authenticators
Don't see what you're looking for?
