Upgrade your Internet Experience
Microsoft.com
Welcome Sign in
Exchange Server TechCenter
Click to Rate and Give Feedback
TechNet
TechNet Library
Exchange Server
Operations
 How to Set the Forms-Based Authenti...

  Switch on low bandwidth view
How to Set the Forms-Based Authentication Private Computer Cookie Time-Out Value

Applies to: Exchange Server 2007 SP1, Exchange Server 2007 Topic Last Modified: 2007-03-20

This topic explains how to configure the cookie time-out values for private computers by using forms-based authentication on a Microsoft Outlook Web Access virtual directory in Microsoft Exchange Server 2007. Private computers are also known as trusted computers.

Bb124819.Caution(en-us,EXCHG.80).gifCaution:
It is important that you warn users of the risks that are associated with selecting the This is a private computer option. A user should select This is a private computer only if the user is the sole operator of the computer, and the computer complies with your organization's security policies.

To perform the following procedures, the account you use must be delegated the Exchange Server Administrator role and membership in the local Administrators group for the target server.

For more information about permissions, delegating roles, and the rights that are required to administer Exchange Server 2007, see Permission Considerations.

Also, make sure that the Outlook Web Access virtual directory is configured to use forms-based authentication.

Bb124819.Caution(en-us,EXCHG.80).gifCaution:
Incorrectly editing the registry can cause serious problems that may require you to reinstall your operating system. Problems resulting from editing the registry incorrectly may not be able to be resolved. Before editing the registry, back up any valuable data.

  1. On the Exchange Client Access server, log on by using your Exchange administrator account, and then start Registry Editor (regedit).

  2. In Registry Editor, locate the following registry key: HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\MSExchange OWA

  3. On the Edit menu, point to New, and then click DWORD Value. In the details pane, name the new value PrivateTimeout.

  4. Right-click the PrivateTimeout DWORD value, and then click Modify.

  5. In Edit DWORD Value, under Base, click Decimal.

  6. In the Value Data box, type a value in minutes between 1 and 43,200 for a maximum of 30 days. Click OK.

    Bb124819.note(en-us,EXCHG.80).gifNote:
    You must restart Internet Information Services (IIS) by using the command iisreset/noforce for these changes to take effect.

  1. Open the Microsoft Command Shell and run the following command to set the private computer cookie time-out value:

    set-ItemProperty 'HKLM:\SYSTEM\CurrentControlSet\Services\MSExchange OWA' -name PrivateTimeout -value <amount of time> -type dword
    Bb124819.note(en-us,EXCHG.80).gifNote:
    You must restart IIS is by using the command iisreset/noforce for these changes to take effect.

  2. Run the following command to view the private computer cookie time-out value:

    get-ItemProperty 'HKLM:\SYSTEM\CurrentControlSet\Services\MSExchange OWA' -name PrivateTimeout
Tags What's this?: Add a tag
Community Content   What is Community Content?
Add new content RSS  Annotations
Default Value      MattEK7   |   Edit   |   Show History
Would it be a good idea to also contain in this article what the default value is, especially when the registry value is not defined (is not present) ?
Tags What's this?: Add a tag
Flag as ContentBug
© 2009 Microsoft Corporation. All rights reserved. Terms of Use  |  Trademarks  |  Privacy Statement
Page view tracker