OS X Catalania built in mail client won't work with HMA

%3CLINGO-SUB%20id%3D%22lingo-sub-1830068%22%20slang%3D%22en-US%22%3EOS%20X%20Catalania%20built%20in%20mail%20client%20won't%20work%20with%20HMA%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-1830068%22%20slang%3D%22en-US%22%3E%3CP%3ESetup%20HMA%20with%20my%20exchange%202013%20server.%20%26nbsp%3BWindows%20Outlook%20and%20ActiveSync%20work%20fine.%20%26nbsp%3BI'm%20using%20Google%20as%20my%20IDP.%20%26nbsp%3BWhen%20I%20setup%20the%20native%20mail%20client%20on%20my%20Mac%2C%20it%20gets%20all%20the%20way%20through%20the%20authentication%20and%20when%20I%20click%20OK%2C%20it%20goes%20to%20a%20Gray%20screen%20and%20then%20just%20sits%20and%20spins.%20%26nbsp%3BIf%20I%20use%20an%20EXO%20account%20everything%20works%20fine.%20%26nbsp%3BWhat%20would%20be%20causing%20the%20Mail%20app%20not%20to%20complete%20the%20login%20to%20my%20on-prem%20server%20but%20works%20fine%20with%20an%20EXO%20account%3F%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CPRE%3EHTTP%2F1.1%20403%20Forbidden%3CBR%20%2F%3ECache-Control%3A%20private%3CBR%20%2F%3EServer%3A%20Microsoft-IIS%2F8.5%3CBR%20%2F%3Erequest-id%3A%2005bf0794-8d75-4fa4-9bf3-bfa55ae025d3%3CBR%20%2F%3ESet-Cookie%3A%20ClientId%3DJCA0Z9ZKEVWUHGBFJJA%3B%20expires%3DFri%2C%2029-Oct-2021%2013%3A40%3A06%20GMT%3B%20path%3D%2F%3B%20HttpOnly%3CBR%20%2F%3EX-CalculatedBETarget%3A%20exchdb02.ca.com%3CBR%20%2F%3Ex-ms-diagnostics%3A%202000008%3Breason%3D%22The%20token%20contains%20not%20enough%20scope%20to%20make%20this%20call.%22%3Berror_category%3D%22invalid_grant%22%3CBR%20%2F%3EStrict-Transport-Security%3A%20max-age%3D31536000%3CBR%20%2F%3E%3CBR%20%2F%3E%3C%2FPRE%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-LABS%20id%3D%22lingo-labs-1830068%22%20slang%3D%22en-US%22%3E%3CLINGO-LABEL%3E2013%3C%2FLINGO-LABEL%3E%3CLINGO-LABEL%3EExchange%20Server%3C%2FLINGO-LABEL%3E%3CLINGO-LABEL%3Ehybrid%3C%2FLINGO-LABEL%3E%3C%2FLINGO-LABS%3E
Highlighted
Regular Visitor

Setup HMA with my exchange 2013 server.  Windows Outlook and ActiveSync work fine.  I'm using Google as my IDP.  When I setup the native mail client on my Mac, it gets all the way through the authentication and when I click OK, it goes to a Gray screen and then just sits and spins.  If I use an EXO account everything works fine.  What would be causing the Mail app not to complete the login to my on-prem server but works fine with an EXO account?

 

HTTP/1.1 403 Forbidden
Cache-Control: private
Server: Microsoft-IIS/8.5
request-id: 05bf0794-8d75-4fa4-9bf3-bfa55ae025d3
Set-Cookie: ClientId=JCA0Z9ZKEVWUHGBFJJA; expires=Fri, 29-Oct-2021 13:40:06 GMT; path=/; HttpOnly
X-CalculatedBETarget: exchdb02.ca.com
x-ms-diagnostics: 2000008;reason="The token contains not enough scope to make this call.";error_category="invalid_grant"
Strict-Transport-Security: max-age=31536000

 

0 Replies