Afternoon All,
So we use AWS RDS and for the past 2 months we have had intermittent issues with ie11 and also opening documents from SharePoint Online. (used RDS for over a year)
Issue 1:
This happens intermittently across the AWS RDS environment it is a new issue for us - and doesn't affect every user at the same time, a user log's into SharePoint online no issues loading or authenticating, but when they open a document from a SharePoint library it immediately prompts for MS office, a user enters their email address then the prompt closes and the user is not asked for any prompts to enter O365 password or redirect to ADFS, then the documents fails to load with no errors.
Issue 2
We use IE11 (Cannot move away from this at present) a group policy is set to open our company SharePoint Online Site, some users get 403 Forbidden, we cannot work out why our SharePoint Online URL gets 403 Forbidden for some users but not for others - All on the same domain across our 3 AWS RDS's (This runs fine in private mode, All add-ons have been disabled and reset cache etc and checked all IE security settings)
Error From Event Log
Error: 0x80090010 Access denied.
Access denied.
Exception of type 'class WinRTException' at oauthtokenrequestbase.cpp, line: 733, method: OAuthTokenRequestBase::QueryTokenBindingKeyId::<lambda_xxxxxxxxxxxxxx>::operator ().
Log: 0x8aa5007f Unable to create a Token Binding Key.
Logged at oauthtokenrequestbase.cpp, line: 733, method: OAuthTokenRequestBase::QueryTokenBindingKeyId::<lambda_xxxxxxxxxxx>::operator ().
Request: authority: https://login.microsoftonline.com/common, client: xxxxxxxxxxx, redirect URI: ms-appx-web://Microsoft.AAD.BrokerPlugin/Xxxxxxxxxxx, resource: https://outlook.office365.com/, correlation ID (request): xxxxxxxxxxxxxx
We have got to a point, where we are out of idea's and don't know how to proceed.