I am testing my app (currently with the java api) against a user on a corporate account.

On office365 , everything worked fine.

The funny thing. The autodiscovery was successful, but when I tried to issue an EWS call, I got an exception with a 403 error.

With the combination of:

email address:  roger@acme.com

password: 123

url: https://lonneymail.acme.com/EWS/Exchange.asmx

domain : northamerica

How should I: 

1) construct the webcredentials (either .net or java apis)

2) if I am using straight soap/https requests, do I need to include the domain in the mix? how exactly ?

I tried to look at the usual examples with "contoso" but there is a great deal of intermixing between user/email/domain/server, etc.... so in the above acme example, it is clear where each part belongs. 

thanks,

  Erez 

• Edited by Erez Katz Monday, May 04, 2015 8:22 PM

See if you can find the relevant entry in your IIS log files. That will tell you two things:

1.  You will be sure that the request is hitting the server that you think it is (not always as obvious as you might think).

2.  You will see the response subcode (the number after 403 in the log entry).  There are over 20 different kinds of 403 response - the subcode will help you to more precisely identify it.  Scroll down to the list of 403s here https://support.microsoft.com/en-us/kb/943891 .