Access Denied error when connecting via a proxy server in Kaspersky Security 9.x for Microsoft Exchange Servers

 

Kaspersky Security 9.x for Microsoft Exchange Servers

 
 
 

Access Denied error when connecting via a proxy server in Kaspersky Security 9.x for Microsoft Exchange Servers

Back to "Troubleshooting"
Latest update: 2019 Apr 23 ID: 11629
 
 
 
 

In case the HTTPS scan option is enabled on the proxy server, requests generated by Kaspersky Security 9.x for Microsoft Exchange Servers will be blocked. In this event, te application logs the following message:

Error AntispamEngine: tpprov [ConnectionTmpl.h:133] eka::SystemException caught: .\src\ProxyAuthorizationUtil.cpp(178) SystemException - basic auth failed. http ret code:407: 0x80000045 (Access denied)

Reason

This occurs because the KSN (Kaspersky Security Network) service and the Enforced Anti-Spam Update Service use port 443 for connecting to public Kaspersky Lab servers. 

Solution

To ensure the correct work of the services of Kaspersky Security 9.x for Microsoft Exchange Servers, it is necessary to create a special allowing rule or disable HTTPS traffic scan.

To disable HTTP traffic scan on Forefront TMG, follow these steps:

  1. Open the Forefront TMG management console.
  2. In the management console, select the server node -> Web Access Policy.
  3. On the Tasks tab in the right frame, select Configure HTTPS inspection.
  4. In the HTTP Outbound Inspection window, clear the check box Enable HTTPS inspection.
  1. Click OK to save the changes and close the window.
  2. Click Apply in the Forefront TMG management console.
 
 
 
 
Was this information helpful?
Yes No
Thank you
 

 
 

How can we improve this article?

Your feedback will be used for content improvement purposes only. If you need assistance, please contact technical support.

Submit Submit

Thank you for your feedback!

Your suggestions will help improve this article.

OK