Microsoft KB Archive/888422

= A user is repeatedly prompted for credentials after you publish an OWA server by using a Web publishing rule together with Forms-Based authentication in ISA Server 2004 =

Article ID: 888422

Article Last Modified on 4/14/2005

-

APPLIES TO


 * Microsoft Internet Security and Acceleration Server 2004 Standard Edition

-





SYMPTOMS
After you publish a Microsoft Exchange Server 2003 Outlook Web Access (OWA) server by using a Web publishing rule in Microsoft Internet Security and Acceleration (ISA) Server 2004, you experience the following symptom: When a user tries to access the Exchange server by using OWA, that user is repeatedly prompted for credentials. Therefore, the user cannot access the Exchange server by using OWA.



CAUSE
This problem occurs if the following conditions are true:
 * You configure OWA Forms-Based Authentication (cookie-auth) in ISA Server 2004.
 * The user who tries to access Exchange by using OWA has a user name or a password that contains one or more characters with an umlaut.

Note An umlaut is a diacritic mark that appears over some vowels in Germanic languages. This mark appears as two horizontally adjacent dots. It modifies the quality of the vowel that it appears over.



Service pack information
To resolve this problem, install Internet Security and Acceleration Server 2004 Service Pack 1 (SP1).



WORKAROUND
To work around this problem, users who have one or more characters with an umlaut in their user names or passwords must change the encoding type setting from Unicode (UTF-8) to Western European (Windows) when they access the OWA logon page. To do this, advise them to follow these steps:
 * 1) Use your Web browser to connect to the OWA logon page.
 * 2) Right-click the OWA logon Web page, point to Encoding, and then click Western European (Windows).



STATUS
Microsoft has confirmed that this is a problem in the Microsoft products that are listed in the &quot;Applies to&quot; section.



MORE INFORMATION
To enable OWA Forms-Based Authentication on a Web publishing rule in ISA Server 2004, follow these steps:
 * 1) Click Start, point to All Programs, point to Microsoft ISA Server, and then click ISA Server Management.
 * 2) In the left pane, expand  , and then click Firewall Policy.
 * 3) In the center pane, right-click the Web publishing rule that you want to configure, and then click Properties.
 * 4) Click the Listener tab.
 * 5) In the This rule applies to requests received on the following listener list, click the listener that you want, and then click Properties.
 * 6) Click the Preferences tab, and then click Authentication.
 * 7) Click to select the OWA Forms-Based check box.
 * 8) Click OK three times.
 * 9) Click Apply to save your changes and to update your firewall configuration. Then, click OK.

Additional query words: HTTP HTTPS Cookieauthfilter Cookie 401 access denied

Keywords: kbbug kbfix KB888422

-

[mailto:TECHNET@MICROSOFT.COM Send feedback to Microsoft]

© Microsoft Corporation. All rights reserved.