RE: OWA 2003 with ISA 2004
- From: Goldenberg <walid_natour@xxxxxxxxxxx>
- Date: Tue, 6 Feb 2007 23:27:00 -0800
Hi
No i meant the opposite, i was able to login to Administrator only on the
OWA externally.
Locally on my network, i can login by any user.
Anything to do?
--
Regards
Walid Natour
"Terence Liu [MSFT]" wrote:
Hello Customer,.
Thank you for posting here.
According to your description, I understand that you can not login OWA from
external via any user except administrator. If I have misunderstood the
problem, please don't hesitate to let me know.
Based on my research, I suggest we try the following steps to see if we can
resolve this issue:
1. I strongly recommend you re-run the CEICW Wizard. You can strictly
follow this KB article to complete the wizard:
825763 How to configure Internet access in Windows Small Business Server
2003
http://support.microsoft.com/?id=825763
Detailed steps for your reference:
a. On the Small Business Server 2003 computer, click "Start", and then
click "Server Management".
b. Expand "Standard Management", and then click "To Do List".
c. In the right pane, click "Connect to the Internet", and then click
"Next".
d. On the "Connection Type" page, click "Do not change connection type",
and then click "Next".
e. On the "Firewall page", click "Enable firewall", and then click "Next".
Important Do not click the "Do not change firewall configuration" option.
f. If you receive the following message, click "OK":
To ensure the proper configuration of ISA Server, existing custom packet
filters will be disabled. For information on how to re-enable existing
packet filters, see Small Business Server Help.
g. On the "Services Configuration" page, click to select the check boxes of
the additional services that you want to make available from the Internet,
and then click "Next".
h. On the "Web Services Configuration" page, click "Allow access to only
the following Web site services from the Internet", click to select the
check boxes of the services and of the Web sites that you want to make
accessible from the Internet (i.e. Outlook Web Access, Remote Web
Workplace, Outlook Mobile Access, Outlook via the Internet, Business Web
site (wwwroot), etc.), and then click "Next".
i. On the "Web Server Certificate" page, click "Create a new Web server
certificate", type the Small Business Server computer's fully qualified
domain name in the "Web server" name box, and then click "Next".
[Important] The fully qualified domain name that you type in the "Web
server name" box must be the same name that you use to connect to the Web
site from the Internet. For example, if the URL that you use to connect to
a Microsoft Outlook Web Access Web site is
<<https://external.domain.com/exchange>>, type "external.domain.com"
(without the quotation marks) in the "Web server name" box.
Note: If you don't have your own registered fully qualified domain name
(FQDN), we can input the "Public IP Address".
j. On the "Internet E-mail" page, click "Do not change Internet e-mail
configuration", and then click "Next".
k. On the "Completing the Configure E-mail and Internet Connection Wizard"
page, view the configuration information to make sure that it is correct,
and then click "Finish".
2. When you input the username and password, please input the username like
this: DomainName\AccountName
If the issue persists, please kindly help me collect some information for
further investigation:
1. Please capture screenshots on the login window and send the pictures to
me at v-terliu@xxxxxxxxxxxxx
2. Can you logon RWW by common user account via https://FQDN/remote?
3. Metabase
=======
a. Install .NET Framework Version 1.1:
http://www.microsoft.com/downloads/details.aspx?FamilyID=262d25e3-f589-4842-
8157-034d1e7cf3a3&DisplayLang=en.
b. Install MBExplorer by installing IIS 6 Resource Kit Tools:
http://www.microsoft.com/downloads/details.aspx?FamilyId=56FC92EE-A71A-4C73-
B628-ADE629C89499&displaylang=en.
c. Once it is installed, access it from Start, Programs, IIS Resources,
Metabase Explorer.
d. In the left pane, right click ''LM'' (under your server computer name)
to choose ''Export to file'', and then save it as IIS.mbk.
e. Compress this mbk file and send it to me for analysis.
4. IIS logs
======
a. Open IIS.
b. Locate Default web site. Right-click it and then click Properties.
c. Click to selected Enable logging and then click properties.
d. Click Advanced.
e. Click to select every checkbox here.
f. Click OK to close these windows.
g. Reproduce this issue and send the logs to me.
NOTE: The log files are located at %systemroot%\System32\LogFiles by
default.
5. Please help to gather the ISA Info:
1) Download the file from the following URL:
http://www.isatools.org/tools/isainfo.zip
2) Extract all files to a folder on ISA server.
3) Double click Isainfo.js. This will generate 2 files
ISAInfo2004-<computer-name>.log and ISAInfo2004-<computer-name>.xml in the
current folder.
4) Please send these files to me at v-terliu@xxxxxxxxxxxxx
6. Please also help to gather the ISA logs:
1) Schedule a down time.
2) Open ISA 2004 management console.
3) Expand the server node and highlight 'Monitoring'.
4) In the right pane, switch to the 'Logging' tab, make sure the 'Task
Pane' is showed there.
5) In the 'Task Pane', click 'Configure Firewall Logging' under 'Logging
Tasks', and then switch the 'log storage format' from 'MSDE database'
(default) to 'File'.
6) Switch to the 'Fields' tab, click 'Select All', and then click OK.
7) In the 'Task Pane', click 'Configure Web Proxy Logging' under 'Logging
Tasks', and then switch the 'log storage format' from 'MSDE database'
(default) to 'File'.
8) Switch to the 'Fields' tab, click 'Select All', and then click OK.
9) Click 'Apply' to save changes and update the configuration.
10) Temporarily disable the Firewall service. To do that, please click
Monitoring | Services tab, and then right click 'Microsoft Firewall' to
choose 'Stop'.
11) Clear the current existing W3C logs. To do that, go to the log saving
directory and clean any existing .W3C logs. By default, the logs will be
saved to 'C:\Program Files\Microsoft ISA Server\ISALogs'. (Some MDF may not
be able to deleted, that's normal.) You may backup them first and then
delete them.
12) Go back to the ISA 2004 management console, and then Start the stopped
'Microsoft Firewall' service.
13) Reproduce the problem, stop the service, and then gather the resulting
W3C files to me for analysis.
14) Please also let me know the IP address of the testing clients so that I
can filter the data.
Please send these log files to my mailbox: v-terliu@xxxxxxxxxxxxx
Hope these steps will give you some help.
Thanks and have a nice day!
Best regards,
Terence Liu(MSFT)
Microsoft CSS Online Newsgroup Support
Get Secure! - www.microsoft.com/security
=====================================================
This newsgroup only focuses on SBS technical issues. If you have issues
regarding other Microsoft products, you'd better post in the corresponding
newsgroups so that they can be resolved in an efficient and timely manner.
You can locate the newsgroup here:
http://www.microsoft.com/communities/newsgroups/en-us/default.aspx
When opening a new thread via the web interface, we recommend you check the
"Notify me of replies" box to receive e-mail notifications when there are
any updates in your thread. When responding to posts via your newsreader,
please "Reply to Group" so that others may learn and benefit from your
issue.
Microsoft engineers can only focus on one issue per thread. Although we
provide other information for your reference, we recommend you post
different incidents in different threads to keep the thread clean. In doing
so, it will ensure your issues are resolved in a timely manner.
For urgent issues, you may want to contact Microsoft CSS directly. Please
check http://support.microsoft.com for regional support phone numbers.
Any input or comments in this thread are highly appreciated.
=====================================================
This posting is provided "AS IS" with no warranties, and confers no rights.
--------------------
| Thread-Topic: OWA 2003 with ISA 2004
| thread-index: AcdKBDpi8/e8qjv1RVqTgy7ArotaXw==
| X-WBNR-Posting-Host: 85.112.95.11
| From: =?Utf-8?B?R29sZGVuYmVyZw==?= <walid_natour@xxxxxxxxxxx>
| Subject: OWA 2003 with ISA 2004
| Date: Tue, 6 Feb 2007 07:34:02 -0800
| Lines: 16
| Message-ID: <3E8687AB-F849-4D4E-95AE-AE39A9D6A9C4@xxxxxxxxxxxxx>
| MIME-Version: 1.0
| Content-Type: text/plain;
| charset="Utf-8"
| Content-Transfer-Encoding: 7bit
| X-Newsreader: Microsoft CDO for Windows 2000
| Content-Class: urn:content-classes:message
| Importance: normal
| Priority: normal
| X-MimeOLE: Produced By Microsoft MimeOLE V6.00.3790.2757
| Newsgroups: microsoft.public.windows.server.sbs
| Path: TK2MSFTNGHUB02.phx.gbl
| Xref: TK2MSFTNGHUB02.phx.gbl microsoft.public.windows.server.sbs:15242
| NNTP-Posting-Host: tk2msftibfm01.phx.gbl 10.40.244.149
| X-Tomcat-NG: microsoft.public.windows.server.sbs
|
| Dears,
|
| I have installed SBS 2003, all features are functioning properly
including
| OWA locally.
| I did the CEICW wizard to publish the OWA externally. I am able to login
to
| the administrator mailbox only. All other users are having repetitive
login
| requests w/o being able to login though OWA is enabled/working properly
in
| the internal network for any user.
|
| Did i miss anything?
| please help....
|
| Thanks GUYS :)
|
| Walid
|
|
- Follow-Ups:
- RE: OWA 2003 with ISA 20
- From: Terence Liu [MSFT]
- RE: OWA 2003 with ISA 20
- References:
- RE: OWA 2003 with ISA 2004
- From: Terence Liu [MSFT]
- RE: OWA 2003 with ISA 2004
- Prev by Date: RE: Router as VPN endpoint
- Next by Date: RE: Cannot View Server Performance and Usage Reports
- Previous by thread: RE: OWA 2003 with ISA 2004
- Next by thread: RE: OWA 2003 with ISA 20
- Index(es):
Relevant Pages
|
