I'm trying to capture the traffic happening when a domain-joined client uses Outlook Web App to log on to his Office 365 account. The whole setup is rather standard, with an on-premises Active Directory Federation Services instance that issues a security token to the user, which in turn hands this over to the Office 365 service. Without Fiddler everything runs smooth and the client logs on just fine. However if Fiddler is used, right when the 302 redirect happens from the O365 page towards the ADFS one on-premises, I'm prompted with a credential dialog, which just won't go away, regardless the values used are ok.
Could I have a pointer to what should I check in order to understand at least the cause of the credential prompt ?
2 Answers, 1 is accepted
0
Accepted
Hello, Mihai--
I'm prompted with a credential dialog, which just won't go away, regardless the values used are ok.
Given that outcome, the most likely explanation, assuming the URL is HTTPS, is that the server is using Channel Binding Tokens aka IIS Extended Protection. You can learn more about this here.
Assuming you're logged into Windows using a user-account that the server will accept, you can avoid this problem by ticking the Rules > Automatically Authenticate checkbox.
Regards,
Eric Lawrence
Telerik
I'm prompted with a credential dialog, which just won't go away, regardless the values used are ok.
Given that outcome, the most likely explanation, assuming the URL is HTTPS, is that the server is using Channel Binding Tokens aka IIS Extended Protection. You can learn more about this here.
Assuming you're logged into Windows using a user-account that the server will accept, you can avoid this problem by ticking the Rules > Automatically Authenticate checkbox.
Regards,
Eric Lawrence
Telerik
Do you want to have your say when we set our development plans?
Do you want to know when a feature you care about is added or when a bug fixed?
Explore the
Telerik Feedback Portal
and vote to affect the priority of the items
0
Mihai
Top achievements
Rank 1
Rank 1
answered on 11 Aug 2015, 03:40 PM
Thanks, Eric. I've went ahead with the "Automatically Authenticate" checkbox in Fiddler and it's working flawlessly.