[9.191][DUPE] Authentication failure

I cannot connect to an specific mailbox on a Exchange server using owa (The user name or password you entered isn't correct. Try entering it again.), but I can connect to the same mailbox using ActiveSync. The following errors occurs in waf when trying through owa:

2013:12:30-11:50:30 UTM reverseproxy: [Mon Dec 30 11:50:30.847544 2013] [form_hardening:error] [pid 7616:tid 4080360304] [client 192.168.170.71:***] Form validation failed: Token missing, referer: https://webmail.example.com/owa/auth/logon.aspx?url=https://192.168.170.70/owa/&reason=2 

2013:12:30-11:48:20 UTM reverseproxy: [Mon Dec 30 11:48:20.031035 2013] [security2:error] [pid 7616:tid 3929291632] [client 192.168.170.71] ModSecurity: Warning. Pattern match "(.*)" at TX:960015-OWASP_CRS/PROTOCOL_VIOLATION/MISSING_HEADER-REQUEST_HEADERS. [file "/usr/apache/conf/waf/modsecurity_crs_inbound_blocking.conf"] [line "26"] [id "981176"] [msg "Inbound Anomaly Score Exceeded (Total Score: 7, SQLi=, XSS=): Last Matched Message: Request Missing an Accept Header"] [data "Last Matched Data: 0"] [hostname "webmail.chroom.com"] [uri "/Microsoft-Server-ActiveSync"] [unique_id "UsFPdMCosg8AAB3AGxMAAACY"]

And an error about password mismatch, but strangely it wasnt there anymore. And im 100% certain that I entered the correct credentials.

0 Tinkerbell over 11 years ago

Hi Nikolai,

We are checking your issue in your initial post: https://community.sophos.com/products/unified-threat-management/astaroorg/f/81/t/65443
Best,
Bianca
Cancel
Vote Up 0 Vote Down

Sign in to reply

Verify Answer

Cancel