This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
I wanted to check in and see if you had any other questions or if you were able to resolve this issue?
If you have any other questions, please let me know. Thank you for your time and patience throughout this issue.
If the information helped address your question, please Accept the answer. This will help us and also improve searchability for others in the community who might be researching similar information.
I have checked with fiddler and following image has some telemetry request 408 issues.
I tested all settings with domain account and it works fine. but whenever we test with AzureAD account it throughs the errors. so i think OnPremise Sharepoint with AzureAD account (MFA) is NOTE SUPPORTED or NOT WORKABLE to open document in browser for office online integration
I have successfully resolved my own problem that is explained in above question.
Here are the steps for SharePoint Server Any one:
- Open SharePoint PowerShell
Remove-SPWOPIBinding -All:$true;
$gmtFarm = Get-SPFarm;$gmtFarm.Properties.Remove("WopiLegacySoapSupport");
$gmtExternalHTTPSoosURL = "owa.YOURDOMAIN.com" or "oos.YOURDOMAIN.com" or "any.any.any";New-SPWOPIBinding -ServerName $gmtExternalHTTPSoosURL -AllowHTTP
Set-SPWOPIZone -zone "external-https"
$gmtConfig = (Get-SPSecurityTokenServiceConfig)$gmtConfig.AllowOAuthOverHttp = $true$gmtConfig.Update()
(Get-SPSecurityTokenServiceConfig).AllowOAuthOverHttp;
$gmtExternalHTTPSoosURL = "owa.YOURDOMAIN.com" or "oos.YOURDOMAIN.com" or "any.any.any"$gmtExternalHTTPSoosURL = "HTTPS://" + $gmtExternalHTTPSoosURL + "/x/_vti_bin/ExcelServiceInternal.asmx";$gmtFarm = Get-SPFarm$gmtFarm.Properties.Add("WopiLegacySoapSupport", $gmtExternalHTTPSoosURL);$gmtFarm.Update();
Here are the steps for Office Online Server (OOS):
$gmtExternalHTTPSoosURL = "owa.YOURDOMAIN.com" or "oos.YOURDOMAIN.com" or "any.any.any";
New-OfficeWebAppsFarm -InternalUrl "HTTP://LOCALserverNAME.localDOMAIN" -ExternalUrl ("HTTPS://" + $gmtExternalHTTPSoosURL) -SSLOffloaded -EditingEnabled
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(313.6, 51%, 40%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EED%3C/text%3E%3C/svg%3E)
Hi, thanks for your question and sharing.
I have the same point as you. Currently, SharePoint 2019 with Azure AD account (MFA) is not supported to open documents in the browser through OOS integration.
If the answer is helpful, please click "Accept Answer" and kindly upvote it. If you have extra questions about this answer, please click "Comment".
Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(160, 17%, 25%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EYJ%3C/text%3E%3C/svg%3E)
Please check the answers at your convenience and feel free to contact us if there is any questions.
If the answer is helpful, please click "Accept Answer" and kindly upvote it.
I'm glad to hear that the issue is solved and thanks for your sharing. To close the thread, I would make a brief summary of this thread.
[Office Online Server (OOS) and SharePoint Server 2019 On-Premises]
Issue Symptom:
Office Online server installed, SSL installed, SSL exported, Exported SSL used in SharePoint All Servers with Web application foundation service application running, SharePoint site HTTPS://MYSHAREPOINTSITE.COM is accessible from OOS Server, HTTPS://WACSERVERDOMAIN/hosting/discover is accessible from all SharePoint Servers, HTTPS://WACSERVERDOMAIN/hosting/discovery is working fine on all servers including th e OOS, SharePoint site Configured with MFA with Azure AD Trust, Login with Azure AD account and AzureCP are working fine, Documents are accessible to download, to upload, to access in office application e.g. word, excel etc.
Documents showing exception in browser when open in office online browsers. errors are shown in following images.
Current status:
Here are steps for SharePoint Server:
1.Open SharePoint PowerShell.
2.Remove all WOPI bindings from SharePoint Farm with PowerShell command.
Remove-SPWOPIBinding -All:$true;
3.Remove all WOPI Farm Properties with PowerShell command.
$gmtFarm = Get-SPFarm; $gmtFarm.Properties.Remove("WopiLegacySoapSupport");
4.Create New WOPI bindings with PowerShell command.
$gmtExternalHTTPSoosURL = "owa.YOURDOMAIN.com" or "oos.YOURDOMAIN.com" or "any.any.any"; New-SPWOPIBinding -ServerName $gmtExternalHTTPSoosURL -AllowHTTP
5.Set the WOPI Zone external with PowerShell command.
Set-SPWOPIZone -zone "external-https"
6.Change the AllowOAuthOverHttp setting in SharePoint 2016 to True with PowerShell Command
$gmtConfig = (Get-SPSecurityTokenServiceConfig) $gmtConfig.AllowOAuthOverHttp = $true $gmtConfig.Update()
7.Confirm the config status with PowerShell command.
(Get-SPSecurityTokenServiceConfig).AllowOAuthOverHttp;
8.Enable SOAP API for Excel with PowerShell command.
$gmtExternalHTTPSoosURL = "owa.YOURDOMAIN.com" or "oos.YOURDOMAIN.com" or "any.any.any" $gmtExternalHTTPSoosURL = "HTTPS://" + $gmtExternalHTTPSoosURL + "/x/_vti_bin/ExcelServiceInternal.asmx"; $gmtFarm = Get-SPFarm $gmtFarm.Properties.Add("WopiLegacySoapSupport", $gmtExternalHTTPSoosURL); $gmtFarm.Update();
OPTIONAL1: You can also follow this Microsoft URL, read carefully each line and adopt. URL: https://learn.microsoft.com/en-us/officeonlineserver/configure-office-online-server-for-sharepoint-server-2016/configure-office-online-server-for-sharepoint-server-2016
OPTIONAL2: If you are using SSL on the server instead of F5 or load balancer then you can follow this URL:
Here are steps for Office Online Server (OOS):
1.Follow this Microsoft URL to install the OOS: https://learn.microsoft.com/en-us/officeonlineserver/deploy-office-online-server
2.Run this PowerShell command to create new office online server farm (OOS Farm).
$gmtExternalHTTPSoosURL = "owa.YOURDOMAIN.com" or "oos.YOURDOMAIN.com" or "any.any.any"; New-OfficeWebAppsFarm -InternalUrl "HTTP://LOCALserverNAME.localDOMAIN" -ExternalUrl ("HTTPS://" + $gmtExternalHTTPSoosURL) -SSLOffloaded -EditingEnabled
3.Configure our Load Balancer or F5 Load Balancer with SSL that cover your all domain names for external users only.
4.Register your external URL to public IP.
5.Register your external URL of OOS for office online server in DNS server.
By the way, since the Microsoft Q&A community has a policy that "The question author cannot accept their own answer. They can only accept answers by others.".
You could click the "Accept Answer" button for this summary to close this thread, and this can make it easier for other community member's to see the useful information when reading this thread. Thanks for your understanding!
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(57.599999999999994, 11%, 15%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EAS%3C/text%3E%3C/svg%3E)
Thanks for sharing! I tried the above listed steps but unfortunately it does not work in my environment. I have an external AzureAD connected to the farm which has no relation to the domain in which the SP and OOS Servers reside. I guess, this scenario is probably not supported anyway.
Just for the sake of interest: Do you have a User Profile Service provisioned in your farm?