Still celebrating National IT Professionals Day with 3 months of free Premium Membership. Use Code ITDAY17

x
?
Solved

How to setup OWA securely

Posted on 2007-11-27
9
Medium Priority
?
237 Views
Last Modified: 2010-03-06
Hi
i have exchange 2003 and OWA works internally using http. i want to set it up to work externally using https. how do i do this??? i have a checkpoint firewall
0
Comment
Question by:mikeleahy
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 4
  • 3
  • 2
9 Comments
 
LVL 104

Expert Comment

by:Sembee
ID: 20356976
Purchase an SSL certificate - you can get a 30 day trial certificate from RapidSSL.com - they also have instructions on their web site.
Once you have done that, enable forms based authentication on the HTTP protocol under Servers in ESM. Open port 443 on your firewall and ensure that you have a good password policy. Not really a great deal to it.

Simon.
0
 
LVL 31

Expert Comment

by:merowinger
ID: 20356999
Sembee is right....he's always right :)
AddOn: When u have a own certificate authority u can create your own certificate....but its not trusted on each user browsers,
as rapidssl certificates
0
 
LVL 104

Expert Comment

by:Sembee
ID: 20357038
I would not call an OWA deployment using a self or home generated SSL certificate secure.

Simon.
0
Is Your AD Toolbox Looking More Like a Toybox?

Managing Active Directory can get complicated.  Often, the native tools for managing AD are just not up to the task.  The largest Active Directory installations in the world have relied on one tool to manage their day-to-day administration tasks: Hyena. Start your trial today.

 
LVL 31

Expert Comment

by:merowinger
ID: 20357053
yes its not the best solution, but you dont have to pay something!
0
 

Author Comment

by:mikeleahy
ID: 20357054
is it secure using a 3rd party cert?? how do i enable forms based authentication on the http protocol . i have only 1 exchange server
0
 
LVL 104

Expert Comment

by:Sembee
ID: 20357062
When you can get SSL certificates for US$20 a year, the "savings" of a home grown certificate become noting, once you have trained your staff to accept the SSL certificate and worried about the fall out from the security warnings. A commercial SSL certificate does not have that problem. It also looks more professional.

I gave you the path to forms based authentication in ESM. You simply enable the option.

Simon.
0
 

Author Comment

by:mikeleahy
ID: 20993497
what cert would do for me i.e. rapidssl, rapidssl wildcard or rapidssl + platinum support.

i have enabled forms based support in ESM. does the certificate have to be installed on each laptop or whats the story ? if forms are enabled, and a cert is on the pc and port is opened then all they have to do is open https:\\mail.xxx.ie\exchange

am i correct

0
 
LVL 104

Accepted Solution

by:
Sembee earned 500 total points
ID: 20997186
A standard SSL certificate will be fine - so a standard RapidSSL certificate will be fine. If you purchase a commercial trusted SSL certificate then you don't have to install the certificate on to every device - that is part off the point.

Simon.
0
 

Author Comment

by:mikeleahy
ID: 21548248
worked great. thanks
0

Featured Post

Office 365 Training for Admins - 7 Day Trial

Learn how to provision tenants, synchronize on-premise Active Directory, implement Single Sign-On, customize Office deployment, and protect your organization with eDiscovery and DLP policies.  Only from Platform Scholar.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

This article provides a convenient collection of links to Microsoft provided Security Patches for operating systems that have reached their End of Life support cycle. Included operating systems covered by this article are Windows XP,  Windows Server…
Are you an Exchange administrator employed with an organization? And, have you encountered a corrupt Exchange database due to which you are not able to open its EDB file. This article will explain all the steps to repair corrupt Exchange database.
In this video we show how to create a mailbox database in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.: First we need to log into the Exchange Admin Center. Navigate to the Servers >> Data…
There are cases when e.g. an IT administrator wants to have full access and view into selected mailboxes on Exchange server, directly from his own email account in Outlook or Outlook Web Access. This proves useful when for example administrator want…
Suggested Courses

670 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question