Article ID: 925231
Article Last Modified on 12/4/2007
APPLIES TO
- Microsoft Internet Security and Acceleration Server 2004 Enterprise Edition
- Microsoft Internet Security and Acceleration Server 2004 Standard Edition
SYMPTOMS
When you access Microsoft Office Outlook Web Access through Microsoft Internet Security and Acceleration (ISA) Server 2004, you receive an error message that resembles the following:
This problem occurs if the following conditions are true:
- You are using the forms-based authentication filter in ISA Server 2004.
- You have installed a third-party add-in program for Microsoft Exchange.
CAUSE
This problem occurs when the response from the Exchange server that provides Outlook Web Access services contains the following HTTP header:
Expires: -1
RESOLUTION
To resolve this problem, install hotfix 925232. For more information, click the following article number to view the article in the Microsoft Knowledge Base:
925232 Description of the ISA Server 2004 hotfix package: September 20, 2006
This hotfix makes ISA Server ignore the "Expires" header when a "Cache-Control: no-cache" header is included in the response from the Exchange server. Both headers are used to prevent the caching of HTTP content and can be used together.
If the third-party add-in for Exchange uses only the "-1" value in the "Expires" header, you must enable the add-in program to also include the "Cache-Control: no cache" header. To do this, see the third-party add-in program's documentation, or contact the manufacturer of the add-in program. For information about how to contact a vendor, click the appropriate article number in the following list to view the article in the Microsoft Knowledge Base:
65416 Hardware and software vendor contact information, A-K
60781 Hardware and software vendor contact information, L-P
60782 Hardware and software vendor contact information, Q-Z
Microsoft provides third-party contact information to help you find technical support. This contact information may change without notice. Microsoft does not guarantee the accuracy of this third-party contact information.
STATUS
Microsoft has confirmed that this is a problem in the Microsoft products that are listed in the "Applies to" section.
MORE INFORMATION
The forms-based authentication filter in ISA 2004 is tested for an Outlook Web Access scenario that does not include any add-in programs. In this scenario, Outlook Web Access does not pass the "-1" value for the "Expires" header. Therefore, access to Outlook Web Access is successful. The forms-based authentication filter for Outlook Web Access in ISA Server 2004 supports the following formats for the "Expires" header:
- Sun, 06 Nov 1994 08:49:37 GMT
- Sunday, 06-Nov-94 08:49:37 GMT
- Sun Nov 6 08:49:37 1994
Additional query words: log on logon e-mail message
Keywords: kbtshoot kbprb kbexchangeowa kbisa2004yes kbexpertiseadvanced KB925231