Want to win a PS4? Go Premium and enter to win our High-Tech Treats giveaway. Enter to Win


Accessing Web Outlook access through Internet Explorer after changing password on LAN

Posted on 2004-10-27
Medium Priority
Last Modified: 2010-04-11
Certain users are constantly being asked to re-enter their password when they go to web Outlook acess and move around folder etc.... Is their anyway to stop IE doing this?
Basically when users change their password on the LAN, and then travell they being constantly asked to re-enter their passwords when the access Webmail.
Question by:itresourcesdub
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
LVL 17

Accepted Solution

Steve McCarthy, MCSE, MCSA, MCP x8, Network+, i-Net+, A+, CIWA, CCNA, FDLE FCIC, HIPAA Security Officer earned 2000 total points
ID: 12424083
When a user logs onto the domain they are authenticated and should not be asked for any more passwords when accessing the domain's resources or Outlook/Exchange.  When using Outlook Web Access, you will always get the logon box as you are hitting the server via web interface and are not authenticated that way.  

If they are Domain users and hit OWA via the web, they should get a logon screen once and after entering the proper credentials they should be fine for the rest of the session.

If they need access to other resorces or Outlook itself, then you might try using a VPN server.  It is a quick setup on the client machine and once the user Authenticates via VPN, then Outlook and all network resources are available, although slower, on the local machine and you won't get those logon boxes popping up.
LVL 12

Expert Comment

ID: 12424580
I agree with samccarthy, we had problems like this with our webmail until we setup all laptop users to use a VPN connection to access the webmail.

Expert Comment

ID: 12428078
A couple of qualifications. IE passes domain credentials to machines when there are no dots in the name. So if you went to http://webserver/owa and you were logged on to the network with the proper credentials and using IE, you would gain access to OWA. If you use the fqdn and the network portion of the address hasn't been supplied as the intranet in the IE settings, IE will assume you are going to the Internet and will not try to pass your domain credentials to the other machine. So if you go to http://webserver.yourcompany.com/owa and you didn't have that specified as your intranet, you would be prompted for a user id and password. In this case, I hope your are using https or some joker is likely to grab your logon credentials. Also, if you do not use IE, like me you use firefox or some other browser, they typically (as far as I know all) do not pass your domain credentials to any machines. So regardless of whether you used the local name of the web site or the fqdn, using one of these browsers means that you will have to enter your password at least once.

As far as their problem with having their passwords changed while they are on the road and continually being prompted for passwords, I think that is a separate issue. I'm guessing your users log onto their machines using cached credentials. When they dial up they have to use whatever their dial-in password is. Now that they have a new password back home, they are being required to enter their password at every corner because their cached credentials are no longer correct. I can't tell you exactly how to fix this without knowing the lay of your LAN but what you need to do is get your dial-in users to logon to the domain so they aren't using the old cached credentials anymore. An easy way to do this would be to set up a special RRAS box that users could dial into when they first log on to their machine and check the box that says logon by dialing or whatever that is. Have the RRAS box allow network logons so when the user dials in, they are actually authenticated by the network and now they will have to use their new password to logon to their local machine's cached account and they won't have to keep entering their password over and over. Man... I made that hard. I hope you can make some sense out of it. It's really a lot aesier than I made it sound!

OK, good luck!

Expert Comment

ID: 12512644

To Fix this login problem.

-Open Administrative tools>>IIS
-Rigth Click on the webmail website the properties.
-Directory Security Tab
-Uncheck the Basic Authintication then Ok

restart the IIS service then try the webmail.

LVL 17
ID: 12513095
Would that not leave your webmail open to anyone then mweehcx?

Featured Post

Cyber Threats to Small Businesses (Part 1)

This past May, Webroot surveyed more than 600 IT decision-makers at medium-sized companies to see how these small businesses perceived new threats facing their organizations.  Read what Webroot CISO, Gary Hayslip, has to say about the survey in part 1 of this 2-part blog series.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

How does someone stay on the right and legal side of the hacking world?
With the evolution of technology, we have finally reached a point where it is possible to have home automation features like having your thermostat turn up and door lock itself when you leave, as well as a complete home security system. This is a st…
Sometimes it takes a new vantage point, apart from our everyday security practices, to truly see our Active Directory (AD) vulnerabilities. We get used to implementing the same techniques and checking the same areas for a breach. This pattern can re…
In a question here at Experts Exchange (https://www.experts-exchange.com/questions/29062564/Adobe-acrobat-reader-DC.html), a member asked how to create a signature in Adobe Acrobat Reader DC (the free Reader product, not the paid, full Acrobat produ…

618 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question