Solved

Force domain internal users to login when accessing outlook web access

Posted on 2006-11-08
5
528 Views
Last Modified: 2008-02-01
Since upgrading from an SBS2003 server to two servers running exchange and AD respectively, users now accessing OWA internally (within the domain) are no longer presented with a login screen, which allows them to put in a username and password.  Instead, it just logs on to whomever the user is logged on to with active directory.

Since admins need to check multiple email accounts using OWA, I would like to force each session to require a username and password.  Unchecking integrated Windows authentication in IIS on the exchange virtual web produces undesirable results.  Is there a different or better way to do this?

Thanks in advance.

0
Comment
Question by:stonenajem
5 Comments
 
LVL 9

Assisted Solution

by:MCPJoe
MCPJoe earned 250 total points
ID: 17901482
You could enable forms based authentication which would cause OWA to bring up a web interface with a forms based logon box.  Its recommended to secure the IIS OWS site with SSL if its accessible from the internet, as passwords will be sent in plain text.  However, if your just using it internally, I've left it unsecured.  You can also customize and brand your OWA logon page if you really want to get into it.
0
 
LVL 9

Assisted Solution

by:MCPJoe
MCPJoe earned 250 total points
ID: 17901488
0
 
LVL 22

Accepted Solution

by:
kristinaw earned 125 total points
ID: 17901816
if they need to access multiple mailboxes, they could also just put the implicit url in the browser, i.e, http://server/exchange/mailboxa, http://server/exchange/mailboxb where mailboxb is the alias name they would login with if prompted for credentials.

hth,
Kris.
0
 
LVL 5

Assisted Solution

by:cjtraman
cjtraman earned 125 total points
ID: 17907782
forms-based authentication can be enabled for your requirement. You can use Microsoft Certificate server to create SSL certificate to be installed in Default web site serving exchange web folders. By installing your own certificate, you need not have to pay to third party certificate authorities.
0
 

Author Comment

by:stonenajem
ID: 17908430
All worked well.  Thanks everyone.
0

Featured Post

Is Your Active Directory as Secure as You Think?

More than 75% of all records are compromised because of the loss or theft of a privileged credential. Experts have been exploring Active Directory infrastructure to identify key threats and establish best practices for keeping data safe. Attend this month’s webinar to learn more.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

ADCs have gained traction within the last decade, largely due to increased demand for legacy load balancing appliances to handle more advanced application delivery requirements and improve application performance.
Follow this checklist to learn more about the 15 things you should never include in an email signature from personal quotes, animated gifs and out-of-date marketing content.
In this video we show how to create a User Mailbox in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.: First we need to log into the Exchange Admin Center. Navigate to the Recipients >> Mailb…
To add imagery to an HTML email signature, you have two options available to you. You can either add a logo/image by embedding it directly into the signature or hosting it externally and linking to it. The vast majority of email clients display l…

939 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

11 Experts available now in Live!

Get 1:1 Help Now