Share via

Disabling Extended Protection on a virtual directory after enabled

mara2021 1,121 Reputation points
2024-05-17T11:39:08.9733333+00:00

I enabled extended protection on my 2019 exchange server. I now have to disable extended protection on the EWS virtual directory. I have an application that connects using EWS and now it cannot connect. My question is: Since EP is enabled on the server, how do I disable it on the EWS directory? Was told that I could manually do it, but not recommended. Thank you.

Windows development | Internet Information Services
Exchange | Exchange Server | Management
Exchange | Hybrid management
Windows for business | Windows Server | User experience | Other
0 comments
Accepted answer
  1. Anonymous
    2024-05-20T07:44:20.3266667+00:00

    Hello @mara2021,

    Welcome to the Microsoft forum for technical support.

    Based on your description, I suggest that you can use the following format of the command in the Exchange Management Shell to disable the extended protection of the EWS virtual directory:

    Set-WebServicesVirtualDirectory -Identity "EWS (Default Web Site)" -ExtendedProtectionTokenChecking None -ExtendedProtectionFlags None -ExtendedProtectionSPNList $null

    Remember to replace "EWS (Default Web Site)" with the actual name of your EWS virtual directory if it's different. You can use the ‘Get-WebServicesVirtualDirectory’ cmdlet to list the EWS virtual directories and their settings if you're unsure of the name.

    However, before disabling it, I recommend that you make a backup copy of your important information so that it can be restored in case of any unforeseen circumstances.

    Please feel free to contact me if you have any queries.

    Best,

    Jake Zhang

    1 person found this answer helpful.

0 additional answers

Sort by: Most helpful
Most helpful Newest Oldest

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.