Hi, I am trying to access a published sharepoint site using a office client (windows phone 8 office app), but get errors 12202 denied (se log below).
Regular browsing and document editing from a pc works, as does mobile browsing, but none of the mobile office clients (document handlers) I have tried. It looks like they are POSTing to SP web services to query sites/libraries directly.
This is TMG 7.0.9193.500, Windows Server 2008 R2. Authentication is form based for browsers, but I assume that TMG is using basic http auth for office clients (see user agent string below) - I have inspected user agent mappings, paths in the rule (default
sharepoint paths, e.g. "/_vti_bin/*")
It is the publishing rule that is kicking in, not the default (deny) rule.
Can you spot any errors in my setup? Is it actually the Sharepoint front end that is throwing this error, or is the request never passing the TMG? Should I isolate the paths/web services used by this class of app and publish in a separate rule (with a different
auth setup)?
Denied Connection TMGSRV2 28.02.2013 21:07:30
Log type: Web Proxy (Reverse)
Status: 12202 Forefront TMG denied the specified Uniform Resource Locator (URL).
Rule: SP2010Rule
Source: External (<client ip>:<client port>)
Destination: Local Host (<spserver.domain.tld> <server ip>:443)
Request: POST https://<spserver.domain.tld>:443/_vti_bin/lists.asmx
Filter information: Req ID: 0a06a835; Compression: client=No, server=No, compress rate=0% decompress rate=0% ; FBA cookie: exists=no, valid=no, updated=no, logged off=no, client type=unknown, user activity=yes
Protocol: https
User: anonymous
Additional information
Client agent: Microsoft Office Mobile/15.0
Object source: Internet (Source is the Internet. Object was added to the cache.)
Cache info: 0x8 (Request includes the AUTHORIZATION header.)
Processing time: 1 MIME type: