Connect Outlook 2007 non-domain client To Exchange 2003

Posted on 2008-10-03
Last Modified: 2013-11-30
I have one laptop user running XP Pro/Outlook2007 that cannot join domain for other reasons. Mail will be managed by Exchange 2003. How can this laptop user who is not joined to domain, send & receive email via Exchange? If he can some how send via relaying through Exchange & download mail from Exchange. Or perhaps some other way. Currently this user is accessing mail via POP3. User will be mobile with laptop. Please provide details.
Question by:yohayon
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 4
  • 4

Expert Comment

ID: 22638126
simply setup the account as usual and when prompted for domain credentials, enter domain\username instead of username..

Accepted Solution

Tonie16 earned 500 total points
ID: 22638221

You said user needs to be mobile.
Please see pic below, settings for client setup, so that user can connect to exchange from internet.
You need to publish the name to the internet and make sure exchange is setup for Outlook anywhere access.  I think it uses the OWA settings, so it should just work then.


Author Comment

ID: 22642848
Tonie16, I will try your recommendation. But what about adding POP3 functionality to the Exchange Server for this laptop user? Is that a quick easy option? I am not responsible for backup up his email.
Industry Leaders: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!


Expert Comment

ID: 22643940
Hi yohayon

A non domain PC will work fine with exchange.. just use domain\username to establish domain credentials  In My Opinion, if you have a VPN then it's the simplest / safest / most secure / quickest to implement option for a remote or mobile user.

I agree, OMA's a great way of doing it, but you'll need to sort out certificates, possibly a DNS A record,
etc, ensure https and not https is available and MOST importantly, ensure EVERYTHINGs locked down.. as you will get attacked from this interface. Turn on password lockout, disable guest, ensure passwords are all secure and preferably standard named accounts aren't accessible.

ONLY then, open port 443 from your firewall to your internal mail server and test. Then keep on top of firewall & server logs .. (keep an eye out for Event ID 529 in your event logs).

I'd simlply give them VPN access (restricted to just the internal mail server if they're not standard internal users) and get them to logon using standard Exchange Services.. preferably using Outlook's Cached Exchange mode (logging on using domain\username instead of just username)... or again, even OWA once connected internally.

yep, for just one user.. given the security hole OWA would create, I'd really stick with VPN... unless you have time on your hands to ensure your security's definitely OK ..

yep, you could setup a POP server.. but you've opened a hole in your security again.. so if there's any chance of KISS (keeping it Simple), I'd recommend doing that.

hope this helps

Author Comment

ID: 22695980
Chops uk, thank you for responding in detail. I have initially attempted to configure the POP3 service on Exchange. The issue is that the laptop user can connect & send/receive email while he is remote. But once this laptiop user comes into the office he cannot. I believe it is related to the fact that the user is using the external ip of the exchange server internally & therefore cannot connect while in the office. Any solution to that?
Is there a dns record that can be created ? How?

Expert Comment

ID: 22697308
Hi Yohayon. Sorry if I'm not clear on what you've currently got running.. does this mean that he's accessing POP email remotely.. or using Exchange Services through a hole opened on the firewall?.. or is he currently using VPN? I assume it's not 'Outlook Anywhere' (over RPC)..

If you don't want to change from your current access mehod, create a DNS 'A' record pointing to the IP address he's accessing.. i.e. and configure his Outlook to point at that. Internally, create a DNS Forward Lookup Record for that points to the internal address of that machine. That way, when he's internal, he'll be using internal DNS and his machine will still be looking at the correct place. when external, he'll use the Internet DNS and get the external IP address.

Or.. and I really can't stress enough that (if he is currently accessing via a hole in the firewall), then you should switch to VPN access or, if you don't want a VPN.. then to Outlook over RPC (Outlook Anywhere on Exchange '07).

It just seems a shame to have the power of Exchange available and having to drop back to POP for this one user when there are othe options open to you!

I hope this helps.. please feel free to reply with to correct me if I've misunderstood anything in your existing setup or requirement... over to you!

Author Comment

ID: 22699706
Recap: Laptop users us using pop3 to download mail from 3rd party. When Exchange will be introduced all mail for BandB,com will be received via Exchange. The laptop user will not be part of the domain but I need to make mail accessible to him. Internally the domain is called (example) So how & what type of record is created to allow the remote user to connect to Exchange POP3 mail server with external IP configured in his Outlook when the user is internal & behind the firewall? Remember that internal domain name is different than external domain name.

Expert Comment

ID: 22700784
My comment about the DNS forward lookup will still work, so this is the answer (don't think IP addresses.. think of pointing at a server name).

However, my question is WHY you want to use POP mail when you could simply give them the power of a full Exchange using VPN or Outlook over RPC? You've not yet explained if and why this isn't an option for you? Don't forget, his laptop doesn't need to be a domain member to use exchange email.

the answer from above, ref the solution to internal / external resolution >> "If you don't want to change from your current access mehod, create a[n Internet] DNS 'A' record [via your ISP] pointing to the IP address [of the external Exchange POP server] he's accessing.. i.e. and configure his Outlook to point at that. Internally, create a DNS Forward Lookup Record for that points to the internal address of that machine [it shouldn't matter what the actual internal domain name is]. That way, when he's internal, he'll be using internal DNS and his machine will still be looking at the correct place. when external, he'll use the Internet DNS and get the external IP address."

over to you!

Author Comment

ID: 22703112
The reason to use POP3 is since I am not supposed to store permanently this users mail on our server.  I still do not understand what type of record I am creating on my internal dns. A record? CNAME? (details please) & how do I overcome issue with the fact that my internal domain name is different than my external domain name with regards to creating the internal dns record?
Dns record on my isp is not an issue & was done long ago & works.

Featured Post

Problems using Powershell and Active Directory?

Managing Active Directory does not always have to be complicated.  If you are spending more time trying instead of doing, then it's time to look at something else. For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

This process describes the steps required to Import and Export data from and to .pst files using Exchange 2010. We can use these steps to export data from a user to a .pst file, import data back to the same or a different user, or even import data t…
This article aims to explain the working of CircularLogArchiver. This tool was designed to solve the buildup of log file in cases where systems do not support circular logging or where circular logging is not enabled
To add imagery to an HTML email signature, you have two options available to you. You can either add a logo/image by embedding it directly into the signature or hosting it externally and linking to it. The vast majority of email clients display l…
This video shows how to quickly and easily add an email signature for all users on Exchange 2016. The resulting signature is applied on a server level by Exchange Online. The email signature template has been downloaded from: www.mail-signatures…

739 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question