Microsoft KB Archive Search

Notice: This website is an unofficial Microsoft Knowledge Base (hereinafter KB) archive and is intended to provide a reliable access to deleted content from Microsoft KB. All KB articles are owned by Microsoft Corporation. Read full disclaimer for more details.

  1. Home
  2. Authentication loop between msft.sts.microsoft.com/adfs and OWA in Exchange Server 2019 and 2016

Authentication loop between msft.sts.microsoft.com/adfs and OWA in Exchange Server 2019 and 2016

View products that this article applies to.

Symptoms

When the "Reduce default 'referer' header granularity" feature is enabled within a browser, the post-authentication request sent to https://mail.exchange.microsoft.com/owa has a limited referrer header. Specifically, the URL path is removed. When this happens, the server skips setting six Authentication-related cookies. As a result, the user is sent back to the msft.sts.microsoft.com server to go through the Authentication flow again. The msft.sts.microsoft.com server sees that the user is logged in, and sends the user back to OWA, and the loop repeats until the server detects the loop and stops the flow.

Note The "Reduce default 'referer' header granularity" feature can be manually set by using the chrome://flags/#reduced-referrer-granularity page in Google Chrome or Microsoft Edge.

↑ Back to the top

Resolution

To fix this issue, install one of the following updates:
For Exchange Server 2019, install the Cumulative Update 5 for Exchange Server 2019 or a later cumulative update for Exchange Server 2019.​
For Exchange Server 2016, install the Cumulative Update 16 for Exchange Server 2016 or a later cumulative update for Exchange Server 2016.

Third-party information disclaimer
The third-party products that this article discusses are manufactured by companies that are independent of Microsoft. Microsoft makes no warranty, implied or otherwise, about the performance or reliability of these products.

↑ Back to the top

References

Learn about the terminology that Microsoft uses to describe software updates.

↑ Back to the top

Keywords: CI114712, kbHotfixAuto, kbqfe, kbfix, kb, authentication loop between msft.sts.microsoft.com and OWA

↑ Back to the top

Article Info
Article ID : 4547705
Revision : 7
Created on : 3/17/2020
Published on : 3/17/2020
Exists online : False
Views : 254