• Article

Appendix D: Configure IIS to Allow Load Balancer FQDN for Loopback

Microsoft Office Communications Server 2007 and Microsoft Office Communications Server 2007 R2 will reach end of support on January 9, 2018. To stay supported, you will need to upgrade. For more information, see Resources to help you upgrade your Office 2007 servers and clients.

Microsoft Internet Information Services (IIS) has a security measure that prevents loopback. When you use the fully qualified domain name (FQDN) or a custom host header to browse a local Web site that is hosted on a computer that is running IIS 5.1 or IIS 6, you may receive an error message that is similar to the following:

"HTTP 401.1 - Unauthorized: Logon Failed"

This issue occurs when the Web site uses Integrated Authentication and has a name that is mapped to the local loopback address. If you are using a load balancer for your pool and attempt to validate Web Components Server functionality, if you do not add the load balancer FQDN as an allowed FQDN for loopback, you receive the above error and validation fails. For more information, see https://r.office.microsoft.com/r/rlidOCS?clid=1033&p1=KBloop.

To allow FQDN of the VIP of your load balancer that is mapped to the loopback address and can connect to Web sites on your computer, follow these steps:

Warning

Serious problems might occur if you modify the registry incorrectly by using Registry Editor or other methods. These problems might require that you reinstall your operating system. We cannot guarantee that these problems can be solved. Modify the registry at your own risk.

To add the FQDN of the VIP of the load balancer to loopback

  1. Click Start, click Run, type regedit, and then click OK.

  2. In Registry Editor, locate and then click the following registry key:

    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa\MSV1_0

  3. Right-click MSV1_0, point to New, and then click Multi-String Value.

  4. Type BackConnectionHostNames, and then press ENTER.

  5. Right-click BackConnectionHostNames, and then click Modify.

  6. In the Value data box, type the FQDN of your load balancer VIP, and then click OK.

  7. Quit Registry Editor, and then restart the IISAdmin service.

You can remove this FQDN after the validation wizard is complete