OWA using mix of machine name/FQDN, screwing things up with HTTPS

Tech-Archive recommends: Repair Windows Errors & Optimize Windows Performance

Hello,

We have one particular customer whose SBS 2003 box is giving me some
heartburn when it comes to setting up OWA.

I've set it up for HTTPS only, and setup permissions the exact same as our
other many working OWA systems. Here's what happens when I try and hit the
"broken" one:

When I go to: https://server.domain.com/exchange, I get prompted for a
username and password, which works properly.

After login, I get a warning that the page contains a mix of both secure and
non secure items. If I don't display the non secure items, I see the two
"panes", both of which contain an "action cancelled" page in them. If I do
display non secure items, I'm prompted again for my username and password
and get an SSL warning that the name of the server doesn't match the name on
the certificate.

The problem is this:

A small amount of the content is from https://server.domain.com/exchange,
but most of the content is from https://server/exchange &
https://server/exchweb. This is leading to my SSL errors, as the name on
the certificate is server.domain.com not server.

Exchange 2003 SP1 and post SP1 fixes have been installed, and otherwise, the
server seems to be working properly.

In IIS, the directories are setup as folllows:

Exchange directory:

Require SSL, Require 128 bit encryption, Integrated Windows auth & Basic
auth are both on.

Exchweb directory:

Require SSL, Require 128 bit encryption, anonymous authentication is on

Public directory:

Require SSL, Require 128 bit encryption, Integrated Windows auth & Basic
auth are both on.


This is really bugging me, any help anyone can offer would be great. I
realize this may be a big confusing, so please, ask some questions....


.

Relevant Pages

  • OWA and SSL
    ... I use OWA with SSL, but sometimes I get a message that some elements are ... insecure and a question if I want so see the no secure items. ...
    (microsoft.public.exchange.admin)
  • Re: IIS Logon Credentials
    ... I doubt Integrated windows auth will work - refer ... How IIS Authenticates Browser Clients ... > As far as SSL is concerned, ... Whenever "Integrated" Authentication is ...
    (microsoft.public.inetserver.iis.security)
  • This page contains both secure and nonsecure items
    ... My application uses SSL on IIS6. ... This page contains both secure and non secure items. ... How can I track whay the browswer shows that flase security alert? ...
    (microsoft.public.inetserver.iis)
  • This page contains both secure and non secure items.
    ... My application uses SSL on IIS6. ... This page contains both secure and non secure items. ... How can I track whay the browswer shows that flase security alert? ...
    (microsoft.public.inetserver.iis.security)
  • This page contains both secure and non secure items.
    ... My ASP.NET application uses SSL on IIS6. ... This page contains both secure and non secure items. ... How can I track why the browswer shows that flase security alert? ...
    (microsoft.public.dotnet.framework.aspnet)