Re: OWA Issues
- From: "Ben Winzenz [Exchange MVP]" <ben_winzenz@nospamdotmessageonedotcom>
- Date: Fri, 15 Sep 2006 14:54:33 -0500
Integrated authentication = Kerberos, which doesn't usuallly work over the
Internet.
Note that I didn't say that it was a "security" issue to have Integrated
enabled for internal access. The only security hole would be if an admin
leaves their workstation unlocked, and if that is happening, you have more
serious problems than OWA automatically logging you in!
As for your question, if you are only using Basic auth, then yes, passwords
are transmitted in plain text. However, if you are using an SSL certificate
(which would be recommended), then the entire connection is encrypted, so
it's a rather moot point, as you'd have to break the encryption key in order
to see the contents of the packets.
--
Ben Winzenz
Exchange MVP
MessageOne
Read my blog!
http://winzenz.blogspot.com
http://feeds.feedburner.com/winzenz (RSS Feed)
"George Schneider" <georgedschneider@xxxxxxxxxxxxxx> wrote in message
news:B04EFF99-1343-4D73-AE44-0E0D9D35F8ED@xxxxxxxxxxxxxxxx
wouldn't it be a security risk not to use integrate authentication.
wouldn't
the passwords be sent in clear text?
"Ben Winzenz [Exchange MVP]" wrote:
Huh? How about one more time in English, please.
Normally, the issue here is that either Integrated authentication is
enabled
on the Exchange vdir, or someone has saved their password in IE's
password
cache. Both can be fixed, albeit by different methods.
Forms-based authentication doesn't necessarily fix this.
--
Ben Winzenz
Exchange MVP
MessageOne
Read my blog!
http://winzenz.blogspot.com
http://feeds.feedburner.com/winzenz (RSS Feed)
"dk" <darshan.kolambkar@xxxxxxxxx> wrote in message
news:1158341687.211525.277470@xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
Hello
See the users having rights on mail boxes will get direct access will
no more prompt for any password check mailbox rights. I can say u this
issue resolved by owa with form base authentication.
Darshan
Chad Mahoney wrote:
George Schneider wrote:
I've been having this ssssue for some time. When any user thta is a
member
of the Domain Admins group attempts to check thir mail via OWA they
go
right
into their mail without being prompted for a user name or password.
This
almost sounds like its a rights issue somewhere. Any help will be
greatly
appreciated.
I would check the IE settings, goto tools Internet options and to the
security tab. If you hit custom level and scroll to the bottom you
will
see an option about user authentication, it will probably be set to
use
current user name and password for users automatically logging into
OWA
and probally set to prompt for users having to enter there
credentials.
.
- Follow-Ups:
- Re: OWA Issues
- From: chace zhang
- Re: OWA Issues
- References:
- Re: OWA Issues
- From: Chad Mahoney
- Re: OWA Issues
- From: dk
- Re: OWA Issues
- From: Ben Winzenz [Exchange MVP]
- Re: OWA Issues
- Prev by Date: Re: User mailbox Output
- Next by Date: Re: Adding/Migrating from Exchange 2003 to *EXCHANGE 2003*
- Previous by thread: Re: OWA Issues
- Next by thread: Re: OWA Issues
- Index(es):
Relevant Pages
|
