Re: OWA Authentication Problem With SBS 2003
- From: v-natliu@xxxxxxxxxxxxxxxxxxxx ("Nathan Liu [MSFT]")
- Date: Thu, 18 Aug 2005 00:55:43 GMT
Hi DesertTroll,
Thank you for posting back! I'm glad to hear that things are working
correctly for you now. Please do not hesitate to post in this great
newsgroup if you need any assistance in the future. I look forward to
working with you again.
Best regards,
Nathan Liu (MSFT)
Microsoft CSS Online Newsgroup Support
Get Secure! - www.microsoft.com/security
======================================================
This newsgroup only focuses on SBS technical issues. If you have issues
regarding other Microsoft products, you'd better post in the corresponding
newsgroups so that they can be resolved in an efficient and timely manner.
You can locate the newsgroup here:
http://www.microsoft.com/communities/newsgroups/en-us/default.aspx
When opening a new thread via the web interface, we recommend you check the
"Notify me of replies" box to receive e-mail notifications when there are
any updates in your thread. When responding to posts via your newsreader,
please "Reply to Group" so that others may learn and benefit from your
issue.
Microsoft engineers can only focus on one issue per thread. Although we
provide other information for your reference, we recommend you post
different incidents in different threads to keep the thread clean. In doing
so, it will ensure your issues are resolved in a timely manner.
For urgent issues, you may want to contact Microsoft CSS directly. Please
check http://support.microsoft.com for regional support phone numbers.
Any input or comments in this thread are highly appreciated.
======================================================
This posting is provided "AS IS" with no warranties, and confers no rights.
--------------------
>From: "DesertTroll" <delmonik@xxxxxxxxx>
>Newsgroups: microsoft.public.windows.server.sbs
>Subject: Re: OWA Authentication Problem With SBS 2003
>Date: 17 Aug 2005 13:59:35 -0700
>Organization: http://groups.google.com
>Lines: 159
>Message-ID: <1124312375.858599.129990@xxxxxxxxxxxxxxxxxxxxxxxxxxxx>
>References: <1123704479.664428.101210@xxxxxxxxxxxxxxxxxxxxxxxxxxxx>
> <1124199958.875332.39870@xxxxxxxxxxxxxxxxxxxxxxxxxxxx>
> <WiW7vxxoFHA.940@xxxxxxxxxxxxxxxxxxxxx>
>NNTP-Posting-Host: 68.50.180.232
>Mime-Version: 1.0
>Content-Type: text/plain; charset="iso-8859-1"
>X-Trace: posting.google.com 1124312381 19712 127.0.0.1 (17 Aug 2005
20:59:41 GMT)
>X-Complaints-To: groups-abuse@xxxxxxxxxx
>NNTP-Posting-Date: Wed, 17 Aug 2005 20:59:41 +0000 (UTC)
>In-Reply-To: <WiW7vxxoFHA.940@xxxxxxxxxxxxxxxxxxxxx>
>User-Agent: G2/0.2
>Complaints-To: groups-abuse@xxxxxxxxxx
>Injection-Info: o13g2000cwo.googlegroups.com; posting-host=68.50.180.232;
> posting-account=jtn6Kw0AAADd0aGtBLhTnDlZsDvaOrCk
>Path:
TK2MSFTNGXA01.phx.gbl!TK2MSFTFEED02.phx.gbl!TK2MSFTNGP08.phx.gbl!newsfeed00.
sul.t-online.de!t-online.de!news.glorb.com!postnews.google.com!o13g2000cwo.g
ooglegroups.com!not-for-mail
>Xref: TK2MSFTNGXA01.phx.gbl microsoft.public.windows.server.sbs:145308
>X-Tomcat-NG: microsoft.public.windows.server.sbs
>
>Nathan,
> Thanks for your help. I reapplied the SSL certificate and
>everything is working fine now.
>
>Take it easy
>
>"Nathan Liu [MSFT]" wrote:
>> Hi DesertTroll,
>>
>> Thank you for your kind update.
>>
>> As you mentioned, you received the error message "HTTP/1.1 503 Service
>> Unavailable." after you enabled form based authentication. Enabled SSL on
>> "Exchange" virtual directory and tried logging in. Please refer to the
>> below KB article to check if it help:
>>
>> 823159 How to troubleshoot the "503 Service Unavailable" error message in
>> http://support.microsoft.com/?id=823159
>>
>> For your question: Let me know if I should have enable SSL for the whole
>> default website.
>>
>> Answer: Please understand the CEICW will automatically configure IIS to
>> utilize SSL for secure transactions between Web clients and the IIS
server,
>> so you don't need to manually enable SSL for the whole default website.
By
>> default, SSL will be configured as follows if a Web site is published:
>>
>> Will require SSL
>>
>> - Outlook Web Access
>> - Outlook via the Internet (RPC over HTTP)
>> - Remote Web Workplace
>> - Performance and Usage Reports
>>
>> Will not require SSL
>>
>> - Outlook Mobile Access
>> - Remote Desktop Web Connection
>> - Windows SharePoint Services intranet site
>>
>> For Outlook Web Access, the component will modify the virtual roots:
>>
>> /Exchange
>> /Exadmin
>> /exchweb
>> /Public
>>
>> In addition, the component will configure the Default Web Site to be
>> configured for Forms Based Authentication (FBA, also called cookie
>> authentication). Due to this, OWA will be required to require SSL. The
OWA
>> virtual roots /exchange and /exchweb will be configured to use cookie
>> authentication. The wizard will configure /public to also still allow
>> Windows Integrated Authentication. This needs to be done after the
Exchange
>> FBA configuration has been set.
>>
>> For Intranet, the component will modify the permission for the Default
Web
>> Site.
>>
>> For the Monitoring Report option, the component will modify the virtual
>> root created by the monitoring wizard.
>>
>> For the OMA option, the component will modify the permissions for the
>> directories as follows:
>>
>> - /oma require SSL if selected
>> - /Microsoft-Server-ActiveSync require SSL if selected
>> - /Exchange-oma make sure SSL is never required. (If SSL is
required
>> on this virtual directory, it will break the site. SSL can be used, it
just
>> cannot be required.)
>>
>> For the Remote User Portal option, if the user changes the state of
>> SSL-require for the RUP (i.e., changes it from required to non-required,
or
>> vice versa), then the RUP URL regkey will need to be updated with the new
>> URL (either http or https, as appropriate). The regkey will be updated at
>> HKLM\Software\Microsoft\SmallBusinessServer\RemoteUserPortal\URL.
>>
>> If the user has also selected to require 128-bit encryption, then the
>> virtual roots will also be specified with the same property.
>>
>> I am appreciated your time and cooperation. If anything is unclear,
please
>> feel free to let me know. I am looking forward to hearing from you.
>>
>> Best regards,
>>
>> Nathan Liu (MSFT)
>> Microsoft CSS Online Newsgroup Support
>>
>> Get Secure! - www.microsoft.com/security
>> ======================================================
>> This newsgroup only focuses on SBS technical issues. If you have issues
>> regarding other Microsoft products, you'd better post in the
corresponding
>> newsgroups so that they can be resolved in an efficient and timely
manner.
>> You can locate the newsgroup here:
>> http://www.microsoft.com/communities/newsgroups/en-us/default.aspx
>>
>> When opening a new thread via the web interface, we recommend you check
the
>> "Notify me of replies" box to receive e-mail notifications when there are
>> any updates in your thread. When responding to posts via your newsreader,
>> please "Reply to Group" so that others may learn and benefit from your
>> issue.
>>
>> Microsoft engineers can only focus on one issue per thread. Although we
>> provide other information for your reference, we recommend you post
>> different incidents in different threads to keep the thread clean. In
doing
>> so, it will ensure your issues are resolved in a timely manner.
>>
>> For urgent issues, you may want to contact Microsoft CSS directly. Please
>> check http://support.microsoft.com for regional support phone numbers.
>>
>> Any input or comments in this thread are highly appreciated.
>> ======================================================
>> This posting is provided "AS IS" with no warranties, and confers no
rights.
>>
>> --------------------
>> >From: "DesertTroll" <delmonik@xxxxxxxxx>
>> >Newsgroups: microsoft.public.windows.server.sbs
>> >Subject: Re: OWA Authentication Problem With SBS 2003
>> >Date: 16 Aug 2005 06:45:58 -0700
>> >Organization: http://groups.google.com
>> >Lines: 14
>> >Message-ID: <1124199958.875332.39870@xxxxxxxxxxxxxxxxxxxxxxxxxxxx>
>> >References: <1123704479.664428.101210@xxxxxxxxxxxxxxxxxxxxxxxxxxxx>
>> > <1123814356.586751.154470@xxxxxxxxxxxxxxxxxxxxxxxxxxxx>
>> > <DVXt9TxnFHA.944@xxxxxxxxxxxxxxxxxxxxx>
>> >NNTP-Posting-Host: 68.50.180.232
>> >Mime-Version: 1.0
>> >Content-Type: text/plain; charset="iso-8859-1"
>> >X-Trace: posting.google.com 1124199964 13377 127.0.0.1 (16 Aug 2005
>> 13:46:04 GMT)
>> >X-Complaints-To: groups-abuse@xxxxxxxxxx
>> >NNTP-Posting-Date: Tue, 16 Aug 2005 13:46:04 +0000 (UTC)
>> >In-Reply-To: <DVXt9TxnFHA.944@xxxxxxxxxxxxxxxxxxxxx>
>> >User-Agent: G2/0.2
>> >Complaints-To: groups-abuse@xxxxxxxxxx
>> >Injection-Info: g43g2000cwa.googlegroups.com;
posting-host=68.50.180.232;
>> > posting-account=jtn6Kw0AAADd0aGtBLhTnDlZsDvaOrCk
>> >Path:
>>
TK2MSFTNGXA01.phx.gbl!TK2MSFTNGP08.phx.gbl!newsfeed00.sul.t-online.de!t-onli
>>
ne.de!news.glorb.com!postnews.google.com!g43g2000cwa.googlegroups.com!not-fo
>> r-mail
>> >Xref: TK2MSFTNGXA01.phx.gbl microsoft.public.windows.server.sbs:144856
>> >X-Tomcat-NG: microsoft.public.windows.server.sbs
>> >
>> >1. Enabled form based authentication. Enabled SSL on "Exchange"
>> >virtual directory and tried logging in, but got error "HTTP/1.1 503
>> >Service Unavailable." I had to do this b/c I reran the CEICW yesterday
>> >and it set everything to default. Let me know if I should have enable
>> >SSL for the whole default website.
>> >
>> >2. w3core is at version 6.0.3790.1830, but when I try to appy patch
>> >831464 it tells me "Setup has detected that the service pack version
>> >of this system is newer than the update you are applying. There is no
>> >need to install this update", then setup stops.
>> >
>> >I didn't go any further with your instructions b/c I think these
>> >problems make the remaining steps irrelevant.
>> >
>> >
>
>
.
- References:
- OWA Authentication Problem With SBS 2003
- From: Delmonik Contee
- Re: OWA Authentication Problem With SBS 2003
- From: DesertTroll
- OWA Authentication Problem With SBS 2003
- Prev by Date: Re: freezes after sp1
- Next by Date: Re: Undeliverable because Non-western Character sets.
- Previous by thread: Re: OWA Authentication Problem With SBS 2003
- Next by thread: Exchange is currently in recovery mode.
- Index(es):
Relevant Pages
|
