Forum Discussion
OWA / ECP loop at login
After upgrading the Exchange 2013 server to CU13 we have the problem that trying to logon to OWA or ECP we getting the logon screen back.
We have done several action in trying to resolve this after reading several blogs and articles:
- remove and renew the virtual directories
- renew the server certificate
- install .NET Framework 4.6.1
- install CU15
- check web.config files
We have found a workaround by disabling FBA and enable Windowsauthentication.
We even have submitted a case with Microsoft where they have found that is a certificate that is having a bad key
11:41:38.594 14024 7784 HttpProxy Verbose "[FbaModule::ParseCadataCookies] Received CryptographicException System.Security.Cryptography.CryptographicException: Bad Key.
at System.Security.Cryptography.CryptographicException.ThrowCryptographicException(Int32 hr)
at System.Security.Cryptography.RSACryptoServiceProvider.DecryptKey(SafeKeyHandle pKeyContext, Byte[] pbEncryptedKey, Int32 cbEncryptedKey, Boolean fOAEP, ObjectHandleOnStack ohRetDecryptedKey)
at System.Security.Cryptography.RSACryptoServiceProvider.Decrypt(Byte[] rgb, Boolean fOAEP)
at Microsoft.Exchange.HttpProxy.FbaModule.ParseCadataCookies(HttpApplication httpApplication) decrypting cadataSig"
2300 03EF0F39 Debug 2017/03/28
We have removed the thirdParty certificate and imported the original pFX, with no luck
We would like to solve this without bying a new certificate
Hoping that the community has some suggestions, we and MS support did not try yet.
Thanks
2 Replies
- Sorry for the late reaction 
 It is solved, We had to buy a new certificate, which will eventually solved the problem.
 Somewhere the certificate got corrupted, but it was not clear what the cause was.- Glad to hear that the problem is solved.