You are currently offline, waiting for your internet to reconnect

"Anonymous authentication enabled for virtual directory" error when you use the Remote Connectivity Analyzer tool to send an anonymous HTTP request from the remote server to the URL in Office 365

Note The following scenario only applies to Microsoft Office 365 customers who have a hybrid deployment of on-premises Exchange Server and Exchange Online.

You try to use the Microsoft Remote Connectivity Analyzer tool to test Autodiscover redirection in an organization. During the test, the Remote Connectivity Analyzer tool tool sends an anonymous HTTP request from the remote server to the URL that's responding with the Autodiscover address for the on-premises hybrid server. If the request succeeds, but anonymous access should not be enabled on this virtual directory, you receive the following error message in the tool:
Anonymous authentication enabled for virtual directory.
This issue occurs because the following applications and services require specific authentication methods:
  • Outlook Web App
  • Microsoft Exchange ActiveSync
  • Outlook Anywhere (formerly known as RPC over HTTP)
  • Autodiscover
  • Other Exchange Web Services such as the Availability Service and web-distributed Offline Address Books
If anonymous access is enabled instead of, or in addition to, other required authentication methods, your server is not as secure from a security perspective, and unexpected results can occur.
To resolve this issue, review the following documentation and confirm that the correct authentication methods for each application or service are enabled for the virtual directories on your Exchange server:
Still need help? Go to the Office 365 Community website.

Article ID: 2710605 - Last Review: 07/09/2014 09:09:00 - Revision: 8.0

  • Microsoft Exchange Online
  • o365 o365e o365a o365m hybrid o365022013 KB2710605