i’m a bit stuck setting up my HAProxy reverse proxe in combination with Exchange.
I have several webservers but only 1 public IP so i opted for HAProxy as reverse Proxy.
All my websites work except for the Exchange 2019 - Outlook connection.
When i fire up outlook from an external connection i continuously get prompted for a password.
Internally (or when i configure my hosts file to point to the reverse-proxy) everything works great.
I’m a bit at a loss what the problem could be.
I’ve stripped my config file to remove my public address etc. and i removed the other sites/acl’s.
Can you please take a look at my config and tell me how i f-ed up?
add the key, and set it for a value that is equal or less than your HA backend server timeout value.
I personally I have mine set to 30 minutes, and have my HA backend timeouts for client (front end) and server timeout (backend) set to the same
“KeepAliveTime”=dword:001b7740
or 1800000 for decimal. unit is milliseconds
Exchange 2019 CU11 + HAProxy 2.4.18
I have a similar problem with Outlook authorizations. The configuration is standard. The only thing I noticed is that the authorization is transmitted incorrectly (our mail domain differs from the UPN). I enter the correct data when requesting a username and password.
Did you manage to fix this problem? Im having the same issue where /mapi posts are getting a 401 error. Ive been around the internet serveral times trying different things with no improvement.
The problem was Windows Extended Protection not working. To get it to work you need to setup the proxy as a ssl bridge and use the same ssl cert on the proxy and the exchange server. This makes setting up auto renew of lets encrypt certificates very difficult.
I switched off Extended protection until I figure out how to solve the above issues.
