Clients take a long time to log off an OWA session after you publish an OWA server and configure OWA forms-based authentication in ISA Server 2004 (920139)


The information in this article applies to:

  • Microsoft Internet Security and Acceleration Server 2004, Enterprise Edition
  • Microsoft Internet Security and Acceleration Server 2004, Standard Edition

SYMPTOMS

Consider the following scenario. You use a Web publishing rule in Microsoft Internet Security and Acceleration (ISA) Server 2004 to publish a Microsoft Outlook Web Access (OWA) server. You configure OWA forms-based authentication in ISA Server 2004. In this scenario, you find that it takes a long time to log off an OWA session.

Note This issue only occurs when you publish OWA servers in a closed environment where users have no access to the Internet.

CAUSE

When a client logs off an OWA session, Microsoft Internet Explorer may make two unnecessary HTTP POST requests to the following URLs:

http://activex.microsoft.com/objects/ocget.dll
http://codecs.microsoft.com/isapi/ocget.dll

This occurs if the S/MIME control is not installed on the OWA client. The OWA logoff program that is part of the forms-based authentication in ISA Server 2004 causes these unnecessary HTTP POST requests. Therefore, it may take a long time to log off an OWA session in a closed environment where users have no access to the Internet.

RESOLUTION

To resolve this issue, follow these steps:
  1. Open the logoff_MSIERich_SMimeCap.htm file on the ISA servers that are part of the OWA server publishing. The logoff_MSIERich_SMimeCap.htm file is located inside the following folder:

    %Windir%Program Files\Microsoft ISA Server\CookieAuthTemplates

  2. Back up the logoff_MSIERich_SMimeCap.htm file.
  3. Open the logoff_MSIERich_SMimeCap.htm file in Notepad, and then locate the following lines of code:

    <OBJECT id="MimeNS" classid="CLSID:D801B381-B81D-47a7-8EC4-EFC111666AC0" VIEWASTEXT></OBJECT>
	<?IMPORT namespace="MIME" implementation=#MimeNS>
	<SCRIPT>
function hres(iErr){return iErr + 0xffffffff + 1;}
</SCRIPT>

  4. Replace the lines of code that you located in step 3 with the following lines of code:

    <SCRIPT language="JavaScript">
if (oClientCaps.isComponentInstalled("{b0f84fec-95ad-4f3e-8fc0-6bc1bbadbf0d}", "ComponentID"))
{
document.write("<OBJECT id='MimeNS' classid='CLSID:D801B381-B81D-47a7-8EC4-EFC111666AC0'></OBJECT>");
document.write("<?IMPORT namespace='MIME' implementation=#MimeNS>");
}
function hres(iErr){return iErr + 0xffffffff + 1;}
</SCRIPT>

  5. Save the logoff_MSIERich_SMimeCap.htm file, and close Notepad.
  6. Restart ISA services.

MORE INFORMATION

If you replace the lines of code in the logoff_MSIERich_SMimeCap.htm file as described in the Resolution section, you must make sure that you use the following command to install the next ISA Server 2004 service pack (SP):

Msiexec /p Service_Pack_Name.msp REINSTALL=ALL REINSTALLMODE=amus /l*vx! Logfile_Name .log

Note Service_Pack_Name.msp is the name of the SP that you install. Logfile_Name.log is the file where you want all information to be logged in verbose format.

This command installs the updated version of the logoff_MSIERich_SMimeCap.htm file that will be included with the next ISA Server 2004 SP.

Note ISA Server 2004 SP2 is the current service pack.

REFERENCES

For more information about similar issues, click the following article numbers to view the articles in the Microsoft Knowledge Base:

833705 Internet Explorer makes two unnecessary POST requests to the Ocget.dll file when you log off Outlook Web Access (OWA) 2003

323207 Internet Explorer makes unnecessary POST request to Ocget.dll for .cab files

Modification Type:MajorLast Reviewed:7/3/2006
Keywords:kbtshoot kbprb KB920139 kbAudITPRO
©2004 Microsoft Corporation. All rights reserved.