Re: Exchange 2003 OWA, SSL and FBA

On Nov 27, 10:50 am, "Lee Derbyshire [MVP]" <email a@t leederbyshire d.
0.t c.0.m> wrote:
"Phillip Christensen" <m...@xxxxxxxxxxxxxxxxxxxxxx> wrote in message

news:5f5d3a30-8585-4aeb-b53f-d41786e7bde2@xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx



After enabling SSL on my primary Exchange 2003 server, I've run into
an issue with FBA. After enabling FBA, it didn't appear. I still get
the username and password dialog like before (although now with SSL).

My problem appears to be as follows: I have the Exchange virtual
directories under a separate virtual server in IIS, not under "Default
Web Site". Looking at my "Exchange Virtual Server" under Protocols-
HTTP, it appears stopped. Trying to start it generates an error.
Checking the event log, Exchange thinks that the Exchange Virtual
Server should be the "Default Web Site" in IIS (based on the
identifier value). My theory is that this is screwing up the DS2MB
process and the my request for FBA isn't making it from Exchange to
IIS.

I'm uncertain how to fix this. I'm thinking either manually setup FBA
in IIS (if this is possible), or some voodoo combination of Metabase
Explorer and ADSIEdit.

Thank you,
Phillip Christensen

If you have several web sites on the server, then you have to be very
careful how you use SSL. If each site is only differentiated by host header
names (i.e. not by port numbers or IP addresses), then SSL doesn't work at
all, since the traffic needs to be decrypted by a site's certificate before
the client's host headername can be read.

Lee.

--
_______________________________________

Outlook Web Access for PDA, OWA For WAP:www.leederbyshire.com
________________________________________

To clarify, the "Default Web Site" is stopped. I'm not using it. I
don't know why OWA wasn't installed underneath it in the first place.
I wouldn't mind moving OWA to the "Default Web Site", but I'm not sure
how to. But you are right, SSL encrypted traffic would not be able to
use host headers.
.

Relevant Pages

  • Re: Problems configuring SSL and SPS2003...
    ... When creating the certificate, instead of using the default Common Name, I ... Default Web Site and the problem is resolved. ... Have you done SSL before? ... By default IIS ...
    (microsoft.public.sharepoint.portalserver)
  • Re: Exchange 2003 SP2 : OWA SSL problem
    ... The SSL port is greyed out in ESM, ... change any VS properties in ESM, the SSL port in IIS gets emptied. ... That's why I created two more web site. ... External virtual server: ...
    (microsoft.public.exchange.admin)
  • Re: Exchange 2003 SP2 : OWA SSL problem
    ... The SSL port is greyed out in ESM, ... change any VS properties in ESM, the SSL port in IIS gets emptied. ... That's why I created two more web site. ... External virtual server: ...
    (microsoft.public.exchange.admin)
  • Re: Exchange 2003 OWA, SSL and FBA
    ... After enabling FBA, it didn't appear. ... the username and password dialog like before (although now with SSL). ... Server should be the "Default Web Site" in IIS (based on the ...
    (microsoft.public.exchange.admin)
  • SSL Port 443 disappears after server restart
    ... Exchange 2000 SP3 using SSL for OWA users ... have to type 443 in the SSL Port textbox of that particular web site in IIS. ...
    (microsoft.public.inetserver.iis.security)
Loading