Solved

Restrict OWA access to internal only for certain users

Posted on 2006-06-30
3
1,252 Views
Last Modified: 2008-01-09
Hi,
I'm looking for a way to restrict certain users to accessing OWA from the local LAN only. The other users need to keep their ability to log in from wherever they are. I'm running a 2003 SBS server and do NOT have ISA server. I use a router with a firewall to forward port 443 to my exchange box from the internet, that all works fine. How can I make sure that certain 'restricted users' can ONLY log in to OWA when on the local LAN? Can i make a second OWA virtual server or something like that? The restricted users need to be able to send mail outside the organisation. Thank you for your thoughts!
0
Comment
Question by:tijsjansen
3 Comments
 
LVL 104

Accepted Solution

by:
Sembee earned 500 total points
ID: 17017033
You cannot restrict access to OWA. It is either ON or OFF. OWA has no way of knowing where the connection is coming from.

You would have to look at something that sits outside of OWA to control access. ISA would be the best choice for this, as it will allow you to control the external inbound access without affecting the internal access.

Simon.
0
 
LVL 26

Expert Comment

by:Vahik
ID: 17017108
well actually if u had two servers u could separate ur users....on server two where internal users would connect from inside ur network u would simply not enable SSL...and not issue those user certificates....and since u only allow port 443
from outside those users without certificate should be denied access...
0
 
LVL 1

Author Comment

by:tijsjansen
ID: 17017299
Hmmm typed a whole comment as to why i accepted Sembee's but then hit the wrong button, no time to type it again. Bottom line: thanks for your time both of you, I'll look into ways of restricting inbound access on the router or will have to break the bank on ISA...
0

Featured Post

How your wiki can always stay up-to-date

Quip doubles as a “living” wiki and a project management tool that evolves with your organization. As you finish projects in Quip, the work remains, easily accessible to all team members, new and old.
- Increase transparency
- Onboard new hires faster
- Access from mobile/offline

Join & Write a Comment

Follow this checklist to learn more about the 15 things you should never include in an email signature from personal quotes, animated gifs and out-of-date marketing content.
Following basic email etiquette rules will help you write a professional email and achieve a good, lasting impression with your contacts.
In this video we show how to create a Contact in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.: First we need to log into the Exchange Admin Center. Navigate to the Recipients >> Contact ta…
how to add IIS SMTP to handle application/Scanner relays into office 365.

747 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

12 Experts available now in Live!

Get 1:1 Help Now