Microsoft small business knowledge base

Article ID: 2710605 - Last Review: July 9, 2014 - Revision: 8.0


Note The following scenario only applies to Microsoft Office 365 customers who have a hybrid deployment of on-premises Exchange Server and Exchange Online.

You try to use the Microsoft Remote Connectivity Analyzer tool to test Autodiscover redirection in an organization. During the test, the Remote Connectivity Analyzer tool tool sends an anonymous HTTP request from the remote server to the URL that's responding with the Autodiscover address for the on-premises hybrid server. If the request succeeds, but anonymous access should not be enabled on this virtual directory, you receive the following error message in the tool:
Anonymous authentication enabled for virtual directory.


This issue occurs because the following applications and services require specific authentication methods:
  • Outlook Web App
  • Microsoft Exchange ActiveSync
  • Outlook Anywhere (formerly known as RPC over HTTP)
  • Autodiscover
  • Other Exchange Web Services such as the Availability Service and web-distributed Offline Address Books
If anonymous access is enabled instead of, or in addition to, other required authentication methods, your server is not as secure from a security perspective, and unexpected results can occur.


To resolve this issue, review the following documentation and confirm that the correct authentication methods for each application or service are enabled for the virtual directories on your Exchange server:


Still need help? Go to the Office 365 Community ( website.

Applies to
  • Microsoft Exchange Online
o365 o365e o365a o365m hybrid o365022013 KB2710605
Additional support options
Ask The Microsoft Small Business Support Community
Contact Microsoft Small Business Support
Find Microsoft Small Business Support Certified Partner
Find a Microsoft Store For In-Person Small Business Support