Hello,
After setting up kerberos acc, changing virtual directories authorization from pure ntlm to negotiate, we got some strange work with haproxy.
Periodically, outlook lost connect thought mapi to server. Outlook restart not help, its just show error, that not possible to open folder list. Whats i see in this moment atn fiddler:
First mapi connect with
X-RequestType Connect Authorization Negotiate got 200, and exchange server response gives cookie: Set-Cookie X-BackEndCookie.
Second request with X-RequestType: Execute and with returned X-BackEndCookie gives 200, but in response this interesting message:
"HTTP/1.1 200 ErrorMsg:Unable to find session context based on cookie. [ResponseCode=ContextNotFound];ErrorCode:;ErrorHints:ContextNotFoundException"
Third request: Same, but
X-RequestType Disconnect
and again this error
HTTP/1.1 200 ErrorMsg:Unable to find session context based on cookie. [ResponseCode=ContextNotFound];ErrorCode:;ErrorHints:ContextNotFoundException
So this is continues like 3-10 times for each mailbox, including mapped mb’s, that its start work normally for some time.
After some activity in outlook, like opening folder etc this cycle repeats.
If clients targets directly to exch server - no problem at all. Before we changed iis from ntlm to negotiate - no problem at all.
Can anyone make advice, where should we search?