Re: OWA Challenging Twice on Authentication

Tech-Archive recommends: Repair Windows Errors & Optimize Windows Performance

From: Frank McCallister SBS MVP (anonymous)
Date: 01/23/05 

Date: Sun, 23 Jan 2005 09:45:50 -0600

Do you have Exch SP1 installed? Is so did you install the update to SP1
which fixes this?
http://www.microsoft.com/downloads/details.aspx?FamilyId=0FE89C95-E767-428C-8621-6A586C655EE3&displaylang=en 

-- 
Frank McCallister SBS MVP
COMPUMAC
"Sped Erstad" <spedlists@erstads.com> wrote in message 
news:308d1f4e.0501211216.15490f3b@posting.google.com...
> Hi,
>
> Having trouble getting OWA for Exchange to allow the user to get into
> OWA without logging on twice.
>
> I have the IUSR_ account set up for anonymous access to just about
> everything in IIS.  The user can anonymously get all the way to the
> OWA main login page (the one with the username and password web form,
> radio button for premium or basic, security radio button for public or
> private - you've all seen it).
>
> So I can type in the username and password but I immediately get the
> Internet Explorer credentials challenge (the same one you'd get if you
> went to a page on the site that hasn't been set up for anonymous
> access).  I have to type in the Domain\User and the password.  After
> this, I get right into OWA as normal.  Hitting cancel or typing in the
> wrong password gets me the standard IIS 401 message (not authorized).
>
> I've narrowed it down to the anonymous access to the Default Web Site
>> Exchange virtual directory.  I have anonymous access enabled and the
> IUSR_ as the windows account.
>
> However, if I change that user to and Administrator account (obviously
> not something I'm going to keep!) everything works fine.
>
> It seems that there is some specific resource that IUSR_ doesn't have
> access to that an Admin account does.
>
> I've scoured through this KB article:
> http://support.microsoft.com/default.aspx?kbid=327843
>
> It appears that I've granted IUSR_ at least Read and Execute privilges
> to everything in there.  Still no go.
>
> Any ideas?
>
> Thanks,
> Spedlists@erstads.com

Relevant Pages

  • OWA Challenging Twice on Authentication
    ... OWA without logging on twice. ... I've narrowed it down to the anonymous access to the Default Web Site ... IUSR_ as the windows account. ...
    (microsoft.public.windows.server.sbs)
  • Re: 401.1 Question
    ... At the point where Anonymous Access is enabled, the IUSR_account ... The IUSR user account is set that the password never expires and that the ... > site) using the wizard, and although I enabled Anonymous Access via IUSR, ... > The permissions on the site folder are inherited from the WebSites folder ...
    (microsoft.public.inetserver.iis)
  • Re: error 401.3 due to an acl
    ... it means that the IUSR account has the right ... All anonymous access means is that IUSR_machinename is automatically used to ... All the other webs (there are ...
    (microsoft.public.inetserver.iis.security)
  • Re: OWA Challenging Twice on Authentication
    ... Does the OWA login screen specifically say to enter DOMAIN\username ... Les Connor [SBS Community Member - SBS MVP] ... >> I've narrowed it down to the anonymous access to the Default Web Site ... >> IUSR_ as the windows account. ...
    (microsoft.public.windows.server.sbs)
  • Re: trouble creating object in win 2000
    ... IIS is set to Anonymous Access (IUSR Account), NTFS permissions (full ... control) have been given to the group "Everyone" and the IIS accounts IUSR ...
    (microsoft.public.inetserver.asp.general)