GarethWW
asked on
Exchange 2003 OWA hyperlinks in emails requiring logon.
Could anyoine tell me what is going on here please:
When I access OWA from the address http://server/exchange and click on a hyperlink to a website, within a message, the website is displayed in a new window.
However, when I do the same from the same OWA from the internet using https://webmail.mydomain.com (which is created as a new website in IIS by Exchange System Manager, and using forms based authentication) the new window pops up with the logon screen displayed instead. The message "You could not be logged on to Outlook Web Access. Make sure your domain\user name and password are correct, and then try again." is displayed in red above the authentication boxes.
Why would this work internally, but not externally - any ideas?
When I access OWA from the address http://server/exchange and click on a hyperlink to a website, within a message, the website is displayed in a new window.
However, when I do the same from the same OWA from the internet using https://webmail.mydomain.com (which is created as a new website in IIS by Exchange System Manager, and using forms based authentication) the new window pops up with the logon screen displayed instead. The message "You could not be logged on to Outlook Web Access. Make sure your domain\user name and password are correct, and then try again." is displayed in red above the authentication boxes.
Why would this work internally, but not externally - any ideas?
ASKER
Hi Kidego,
I have both Integrated Windows Auth, and Basic Auth switched on.
Internal users need to be able to access it without having to type in usernames etc, while external users should type usernames etc.
I tried toyu suggestion anyway, but it is still the same I'm affraid.
G
I have both Integrated Windows Auth, and Basic Auth switched on.
Internal users need to be able to access it without having to type in usernames etc, while external users should type usernames etc.
I tried toyu suggestion anyway, but it is still the same I'm affraid.
G
In IIS, Basic Authentication, check if the default domain is set, otherwise you nedd to log in with domain\username
Regards
Peter
Regards
Peter
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
I have now tried it as follows:
Windows Integrated Auth - ON
Basic Auth - ON
Forms Based Auth - ON
Mail and Logon OK, but links don't work
Windows Integrated Auth - ON
Basic Auth - ON
Forms Based Auth - OFF
Mail and Logon OK, links OK
Windows Integrated Auth - OFF
Basic Auth - ON
Forms Based Auth - ON
440 Login Timeout
Windows Integrated Auth - OFF
Basic Auth - ON
Forms Based Auth - OFF
Mail and Logon OK, links OK
As you can see, this is obviously something to do with the Forms Based Auth. I prefer to have the OWA logon Screen rather than an IE logon box.
Windows Integrated Auth - ON
Basic Auth - ON
Forms Based Auth - ON
Mail and Logon OK, but links don't work
Windows Integrated Auth - ON
Basic Auth - ON
Forms Based Auth - OFF
Mail and Logon OK, links OK
Windows Integrated Auth - OFF
Basic Auth - ON
Forms Based Auth - ON
440 Login Timeout
Windows Integrated Auth - OFF
Basic Auth - ON
Forms Based Auth - OFF
Mail and Logon OK, links OK
As you can see, this is obviously something to do with the Forms Based Auth. I prefer to have the OWA logon Screen rather than an IE logon box.
http://support.microsoft.com/default.aspx?scid=kb;en-us;830827
Do you have SSL cert installed for FBA? It won't work without it.
D
Do you have SSL cert installed for FBA? It won't work without it.
D
ASKER
Yes I have an SSL
ASKER
I have now managed to get it to use ONLY Basic Auth, and FBA.
I now get the logon screen, but the links STILL don't work!
the url, if it helps, is https://webmail.gwis.co.uk
I now get the logon screen, but the links STILL don't work!
the url, if it helps, is https://webmail.gwis.co.uk
ASKER
Thanks All
I have now got it working.
Manual editing of permissions right through Exchange and ExchWeb to bin. My problem was no annonymous access in the ExchWeb and bin Virtual directories.
Thanks anyway.
It was actually Kidego that gave me the hint to guide me in the right direction, so enjoy the points.
Gareth.
I have now got it working.
Manual editing of permissions right through Exchange and ExchWeb to bin. My problem was no annonymous access in the ExchWeb and bin Virtual directories.
Thanks anyway.
It was actually Kidego that gave me the hint to guide me in the right direction, so enjoy the points.
Gareth.
D