Re: OWA Logon

Hi,

If http://servername/exchange works internally it means that integrated authentication is applied to the web server. You should use basic authentication to get the logon prompt (and install a certificate in order to use forms based authentication).

Leif

"Julian" <Julian@xxxxxxxxxxxxxxxxxxxxxxxxx> skrev i meddelelsen news:7A760279-1263-4312-A53E-AF64430FC878@xxxxxxxxxxxxxxxx
Thanks to the help of Lee Derbyshire, I have managed to fix an issue, but now
experience the below behaviour with OWA on our Exchange 2003 box.


When I go to the web address externally:
http://owa.ourdomain.co.uk/exchange, the usual authentication username and
password box appears instead of the OWA logon page I was expecting.

If we enter the ourdomain\userid in the username box and the password it
starts to load Web Access as you would expect for the userID you've entered.
This is the same for all users. OK, so no problem with that really, but...

You can see the left hand side folder view, the list of emails and the
reading pane, but the reading pane will not always allow you to read the
content of
the email within it - it keeps prompting for the username and password.
Eventually you can read it, but then it prompts again and often locks the
account out.

If you double click the email, it opens in a new window as expected all
fine. You can't delete or navigate on from the first page of emails though.

I have re-created the folders and reset the permissions as per what had been
advised previously and in the KB articles kindly provided.

Any further ideas, so close, yet so far!

NB: All works perfectly if I enter http://servername/exchange internally
(although you don't get the logon screen, it takes you straight in for the
logged on user)


Regards,
Julian


.

Relevant Pages

  • Re: IIS 5.0 IWA - Really need tips to solve this issue
    ... IE May Prompt You For a Password ... Just because you are using IWA doesn't mean that logon is automatic - it is ... Annoynymous Access & Authentication Control: Integrated Windows ...
    (microsoft.public.inetserver.iis.security)
  • Re: Kerberos machine authentication - apparent authentication fail
    ... > until logon), the wireless connection can kick off when it is ready. ... > was confirmed in the server event logs with IAS (i set that up as the radius ... > as an ordinary user kicks in and takes over from the machine authentication. ... > while the network sorts itself out and a double click on a network link of ...
    (microsoft.public.windows.server.security)
  • Re: Kerberos machine authentication - apparent authentication fail
    ... as the case may be) which will delay authentication until ... I also have an Intel network adapter and WAP that does not have this> problem and even works well with 802.1X EAP-TLS for domain logon. ... In> most cases [ipsec a possible exception] kerberos authentication is not> needed to access domain resources as long as the client and server use a> common authentication method for lm/ntlm/ntlmv2. ... The main issue is to> NEVER include an ISP dns server in the preferred server list in the tcp/ip> properties or DHCP scope of any domain computer or any computer you want to> join to the domain in which case your computers may be trying to locate the> domain _srv records on the ISP dns server and fail. ...
    (microsoft.public.windows.server.security)
  • Re: Logon 529 Errors
    ... Authentication in SMTP virtual server. ... These are almost surely SMTP logon attempts, ... Caller User Name: DELLSERVER$ ...
    (microsoft.public.windows.server.sbs)
  • Re: Active Directory Logon to attribute
    ... have permission to access as you are denied to logon from this workstation... ... If accounts and machines are from abc.com they can logon to abc.com only. ... named xyz.org for the user authentication for internet. ...
    (microsoft.public.windows.server.active_directory)