Solved

Exchange 2003 OWA hyperlinks in emails requiring logon.

Posted on 2004-04-28
9
4,568 Views
Last Modified: 2010-05-18
Could anyoine tell me what is going on here please:

When I access OWA from the address http://server/exchange and click on a hyperlink to a website, within a message, the website is displayed in a new window.

However, when I do the same from the same OWA from the internet using https://webmail.mydomain.com (which is created as a new website in IIS by Exchange System Manager, and using forms based authentication) the new window pops up with the logon screen displayed instead. The message "You could not be logged on to Outlook Web Access. Make sure your domain\user name and password are correct, and then try again." is displayed in red above the authentication boxes.

Why would this work internally, but not externally - any ideas?
0
Comment
Question by:GarethWW
  • 5
  • 3
9 Comments
 
LVL 24

Expert Comment

by:David Wilhoit
ID: 10944895
You've got Integrated Windows auth turned on for the exchange virtual directories. Inside, it doesn't affect you because you're able to connect to the DC. you can't do that from the internet, so you get the logon screen. Turn off Windows auth...it's probably set on the exchange virtual dir itself.

D
0
 

Author Comment

by:GarethWW
ID: 10946873
Hi Kidego,

I have both Integrated Windows Auth, and Basic Auth switched on.

Internal users need to be able to access it without having to type in usernames etc, while external users should type usernames etc.

I tried toyu suggestion anyway, but it is still the same I'm affraid.

G
0
 
LVL 28

Expert Comment

by:peakpeak
ID: 10948604
In IIS, Basic Authentication, check if the default domain is set, otherwise you nedd to log in with domain\username

Regards
Peter
0
 
LVL 24

Accepted Solution

by:
David Wilhoit earned 250 total points
ID: 10949117
http://support.microsoft.com/default.aspx?scid=kb;en-us;324274

Set your permissions per this article, and then tell me if you're still having an issue

D
0
Find Ransomware Secrets With All-Source Analysis

Ransomware has become a major concern for organizations; its prevalence has grown due to past successes achieved by threat actors. While each ransomware variant is different, we’ve seen some common tactics and trends used among the authors of the malware.

 

Author Comment

by:GarethWW
ID: 10949139
I have now tried it as follows:

Windows Integrated Auth - ON
Basic Auth - ON
Forms Based Auth - ON
Mail and Logon OK, but links don't work


Windows Integrated Auth - ON
Basic Auth - ON
Forms Based Auth - OFF
Mail and Logon OK, links OK

Windows Integrated Auth - OFF
Basic Auth - ON
Forms Based Auth - ON
440 Login Timeout

Windows Integrated Auth - OFF
Basic Auth - ON
Forms Based Auth - OFF
Mail and Logon OK, links OK

As you can see, this is obviously something to do with the Forms Based Auth. I prefer to have the OWA logon Screen rather than an IE logon box.
0
 
LVL 24

Expert Comment

by:David Wilhoit
ID: 10949250
http://support.microsoft.com/default.aspx?scid=kb;en-us;830827

Do you have SSL cert installed for FBA? It won't work without it.

D
0
 

Author Comment

by:GarethWW
ID: 10949269
Yes I have an SSL
0
 

Author Comment

by:GarethWW
ID: 10949294
I have now managed to get it to use ONLY Basic Auth, and FBA.

I now get the logon screen, but the links STILL don't work!

the url, if it helps, is https://webmail.gwis.co.uk

0
 

Author Comment

by:GarethWW
ID: 10950231
Thanks All

I have now got it working.

Manual editing of permissions right through Exchange and ExchWeb to bin. My problem was no annonymous access in the ExchWeb and bin Virtual directories.

Thanks anyway.

It was actually Kidego that gave me the hint to guide me in the right direction, so enjoy the points.

Gareth.
0

Featured Post

Shouldn't all users have the same email signature?

You wouldn't let your users design their own business cards, would you? So, why do you let them design their own email signatures? Think of the damage they could be doing to your brand reputation! Choose the easy way to manage set up and add email signatures for all users.

Join & Write a Comment

Disabling the Directory Sync Service Account in Office 365 will stop directory synchronization from working.
Exchange server is not supported in any cloud-hosted platform (other than Azure with Azure Premium Storage).
In this video we show how to create a Shared Mailbox in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.: First we need to log into the Exchange Admin Center. Navigate to the Recipients >> Sha…
To add imagery to an HTML email signature, you have two options available to you. You can either add a logo/image by embedding it directly into the signature or hosting it externally and linking to it. The vast majority of email clients display l…

707 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

15 Experts available now in Live!

Get 1:1 Help Now