• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 1139
  • Last Modified:

Securing / Hardening OWA

Hi All,

I'm just wondering if there's any way to make OWA more secure after i purchased UCC certificate from COMODO RC4-128 bit

but my boss explained that he can log in at an internet cafe with no problems.
I have logged in with my home desktop and found the only security to be the normal login and password required.

Can anyone here please share on how we might address this to secure and hardening the OWA access.

- thanks
  • 2
3 Solutions
You may have a UCC
but you MUST force the Connection to use only SSL
if the users are using SSL HTTPS then the connection is secure
are you able to view the site using HTTP, NO
what is the Security your boss is looking for
A lock and prevention from accessing the OWA from anywhere
then you can use the VPN
OWA is designed for, well, convenience. It is there so that users can access their own emails while on the road. What is the point of using OWA if your users can't access their emails say, while in a business trip abroad?

Yes there is a way to further tighten OWA but you have to think about the cost vs benefit.

The most secure way is to get your user(s) to create a long & complex password. Use Group Policy to enforce such as your users will have to use a password over 8 characters with a combination of upper/lower case, numbers & letters.

jjozAuthor Commented:

Currently my OWA is using HTTPS and it is accessible from anywhere around the world.

i guess that UCC cert. is should be enough then.
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Featured Post

Easily manage email signatures in Office 365

Managing email signatures in Office 365 can be a challenging task if you don't have the right tool. CodeTwo Email Signatures for Office 365 will help you implement a unified email signature look, no matter what email client is used by users. Test it for free!

  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now