Home
Topics
Email, Messaging and Collaboration Clients
Outlook Web Access
Decoding Outlook Web Access log entries

Decoding Outlook Web Access log entries

Richard Luckett

I read your expert answer Checking logs for OWA logon attempts. I was wondering if you could point me somewhere that would tell me how to read those logs. I am a little concerned after looking at some of them. For example, I see a lot of lines like this:

GET /exchange/ - 80 - xxx.xxx.x.x Mozilla/4.0 401 2 2148074254. (The x's are replacing an IP address.)

Are these lines normal, or is that someone trying to hack into our system?

Requires Free Membership to View

Login

By submitting you agree to receive email communications from
TechTarget and its partners. Privacy Policy Terms of Use.

It is perfectly normal to see a number of GET commands in the IIS World Wide Web Consortium (W3C) logs. Outlook Web Access is extremely log intensive. There will be an overwhelming amount of log entries -- as you've discovered.

The log format is based off of the W3C's extended log file format. For troubleshooting purposes, it is possible to have additional information logged.

In the following example, notice that, in addition to what you are logging, there is also a domain and username being logged:

2005-08-05 00:25:05 192.168.1.11 GKrich.luckett 192.168.1.250 80 GET /exchange - 404 Mozilla/4.0+(compatible;+MSIE+5.01;+Windows+NT+5.0;+DigExt)

Learn more about the format here.

Do you have comments on this Ask the Expert Q&A? Let us know.

Related information from SearchExchange.com:

Tip: Exchange Server diagnostics: An introduction to application and system logs

Tip: Exchange Server diagnostics: Digging into IIS logs

Resource Center: Monitoring and logging tips and resources

Free Download: Exchange Server Best Practices Analyzer Tool

More News and Tutorials

Articles

Related glossary terms

Terms for Whatis.com - the technology online dictionary

This was first published in December 2005

Join the conversationComment

Share

Comments

Results

Contribute to the conversation

All fields are required. Comments will appear at the bottom of the article.

Back to top

More from Related TechTarget Sites

Windows Server
Enterprise Desktop
Cloud computing
SQL Server
Windows IT

Windows Server
- Microsoft delivers patch updates for Windows Server 2012, Windows 8
  
  Microsoft delivered two critical and eight important bulletins in May's Patch Tuesday release, fixing issues in Windows Server 2012 and Office apps.
- Windows Azure Active Directory steps out of the shadows
  
  As Windows Azure Active Directory moves into general availability, we look at how it can help admins manage user authentication in the cloud.
- Steps to read XML files with PowerShell
  
  Wondering how to get PowerShell to read XML files? Our expert explains a few methods you could use.
Enterprise Desktop
- Windows 8 tools build on native Windows 7 utilities with new capabilities
  
  New and updated Windows 8 tools can help admins and users. Windows 8 utilities include functions for backing up and restoring systems.
- Why a Windows security scan is not enough to protect your workstations
  
  A traditional Windows security scan may lure IT into complacency about desktop vulnerabilities, so look at four areas to beef up Windows security.
- Microsoft addresses legacy apps with Windows 8 app compatibility tools
  
  New operating systems are always accompanied by compatibility concerns. Windows 8 app compatibility is no different, or is it?
Cloud computing
- Sequestration stymies federal government cloud ambitions
  
  The federal government is under mandates to consolidate data centers and deliver IT as a Service, but sequestration makes this easier said than done.
- VMware charges into public cloud IaaS fray as Dell exits
  
  Dell will discontinue its OpenStack and VMware vCloud-based public cloud offerings as VMware delivers its vCloud IaaS.
- Cloud migration obstacles remain for heavily regulated industries
  
  Financial, government and healthcare industries must overcome data security breaches and regulatory issues for a successful cloud migration.
SQL Server
- Database index design and optimization: Some guidelines
  
  What are the latest tips and tricks for database design and optimization? Check out this tip from Basit Farooq to learn more.
- Adam Machanic talks SQL Saturday
  
  We caught up with Adam Machanic, group leader of the New England SQL Server user group, at SQL Saturday Boston. Find out what he shared with us.
- SQL Server meets database application security
  
  Make sure your SQL Server is secure by studying these general guidelines for secure database applications from SQL Server expert Roman Rehak.
Windows IT
- How to advance your cloud skills and get ahead of the gap
  
  There may be a growing shortage of IT pros with cloud skills, but you can take action now and become a valuable asset with the right skills.
- Prepare for a SharePoint 2013 upgrade with five tips
  
  Considering an upgrade to SharePoint 2013? Find out the answers to the most common questions IT pros will ask before making the jump.
- Prioritize your IT tasks and finally conquer your to-do list
  
  It's easy to feel overwhelmed by a growing to-do list of IT tasks, but there are easy ways you can decide what to tackle first and what can wait.

All Rights Reserved,Copyright - 2013, TechTarget