Welcome! Log In Create A New Profile

Advanced

Cookie/Session Expired - OWA SSL Reverse Proxy

August 14, 2013 01:20PM
Hi.

Trying to configure a reverse proxy to allow external access to an outlook web access server. I am able to route traffic through the NGINX to the OWA server, present the web page, and place the username & pw into the form. OWA rejects valid username/pwd's with a: "Your session has timed out...." error.

Looking through my custom log files, somehow the session ID and the expired values are munged in the GET & POST process through the proxy. There may be a simple fix that I'm not able to find. Any suggestions will be appreciated!


=======Logs====== $request |[set_cookie - "$sent_http_set_cookie" ]|' ==========Logs=========

POST /owa/auth.owa HTTP/1.1 |[ set_cookie - "sessionid=9a0d1af8-9406-4c3d-b225-cf28e56a8bb6; path=/" ]|
GET /owa/ HTTP/1.1 |[ set_cookie - "sessionid=; path=/; expires=Thu, 01-Jan-1970 00:00:00 GMT" ]|
GET /owa/auth/logon.aspx?url=https://email.internal.local/owa/&reason=3 HTTP/1.1 |[ set_cookie - "-" ]|
GET /owa/auth/logon.aspx?replaceCurrent=1&reason=3&url=https%3a%2f%2femail.internal.local%2fowa%2f HTTP/1.1 |[ set_cookie - "-" ]|
POST /owa/auth.owa HTTP/1.1 |[ set_cookie - "sessionid=50bfb645-4ed1-4bd8-8d69-7fa0e79d748d; path=/" ]|
GET /owa/ HTTP/1.1 |[ set_cookie - "sessionid=; path=/; expires=Thu, 01-Jan-1970 00:00:00 GMT" ]|



=======OWA=======
server {
listen 80;
server_name email;
rewrite ^(,*) https://email$1 permanent;
}

server {
listen 443;
server_name email;
rewrite ^/$ https://email/owa permanent;
ssl on;
ssl_certificate /etc/ssl/certs/myssl.crt;
ssl_certificate_key /etc/ssl/private/myssl.key;
ssl_session_timeout 5m;
proxy_read_timeout 360;

location /owa { proxy_pass https://email.internal.local/owa;
proxy_pass_header Set-Cookie;
proxy_pass_header P3P;
}
}
SubjectAuthorPosted

Cookie/Session Expired - OWA SSL Reverse Proxy

spacecwoboyAugust 14, 2013 01:20PM

Re: Cookie/Session Expired - OWA SSL Reverse Proxy

Jonathan MatthewsAugust 14, 2013 01:36PM

Re: Cookie/Session Expired - OWA SSL Reverse Proxy

spacecwoboyAugust 16, 2013 09:43AM



Sorry, only registered users may post in this forum.

Click here to login

Online Users

Guests: 70
Record Number of Users: 7 on March 06, 2014
Record Number of Guests: 184 on July 08, 2014
Powered by nginx    Powered by FreeBSD    PHP Powered    Powered by Percona     ipv6 ready