Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations biv343 on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

Outlook Web Access Error

Status
Not open for further replies.
bladesport

bladesport

IS-IT--Management
Mar 8, 2002
3
US
When attempting to login to OWA in Exchange 2000, all of my users get this error after entering username and password: “Error. Access is Denied.” Administrators can log on just fine but normal users cannot. The Exchange server is Win2K with Exchange 2K and all the latest service packs installed. OWA resides on the Exchange server through the default install. The primary domain controller and global catalog is a separate Win2K server.

OWA used to work until recently. Nothing has been modified on the Exchange Server, but recently there were some unintentional security changes on the domain controller and we don’t know what they were. The only thing I can find about login denial in OWA says to make sure that users have “log on locally” rights and “access this computer from the network” rights. They have these but still can’t login to OWA.

Any ideas?
 
Sort by date Sort by votes
That is all they need. This doesn't work by default on a DC because Everyone doesn't have logon locally.

I would verify that a problem user can logon to the server. And then try to use OWA locally on the box. Dan
Microsoft Exchange Support @ Microsoft
 
Upvote 0 Downvote
I Have the same problem, and the ordinary user can log on localy and access his mailbox from outlook but via OWA No !!

* The only way I found is when I add him in administrators Group !!
 
Upvote 0 Downvote
You only need that if it is a DC. And they only need to be given logon locally. Not administrator!

Windows 2000 Domain Controller
Click Start, point to Programs, point to Administrative Tools, and then click Domain Controller Security Policy.
Click Security Settings, click Local Policies, and then click User Rights Assignment.
In the Details pane, double-click Log on locally, remove the Everyone group, and then add the group or users who will have access to OWA.
Close the Domain Controller Security Policy window.
Click Start, click Run, type secedit /refreshpolicy machine policy, and then click OK. Dan
Microsoft Exchange Support @ Microsoft
 
Upvote 0 Downvote
Thank you !! I understand and already do this (logon localy)... I'm on a DC. Without Succes, seem other place in the security policy are not correctly set because to make a test if I put the user in admin group, everything work ! I can't put everybody in this group...

Thank
 
Upvote 0 Downvote
Ok so like I said add either them or Everyone rights to logon locally.

You have to have this right for OWA to work on a DC! Dan
Microsoft Exchange Support @ Microsoft
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

microsGuy16
  • Locked
  • Question
Global Address List Names not showing in Outlook OWA 365
Replies
0
Views
3K
microsGuy16
microsGuy16
Rohit Bareja
  • Locked
  • Question
View and access only own records, and not the records by others on SharePoint.
Replies
3
Views
2K
garysm
garysm
dajohnso
  • Locked
  • Question
Outlook POP3 cant connect to exchange 2007
Replies
3
Views
257
BN75
BN75
watsson7278
  • Locked
  • Question
USB Error
Replies
1
Views
186
strongm
strongm
ADB100
  • Locked
  • Question
Outlook 2016 thumbnail photos & OAB oddness
Replies
0
Views
152
ADB100
ADB100

Part and Inventory Search

Sponsor

Back
Top