Go Premium for a chance to win a PS4. Enter to Win


Exchange 2007 webmail access from outside the domain

Posted on 2009-04-08
Medium Priority
Last Modified: 2012-05-06
Hi ... I have a new Exchange 2007 server on a domain with an existing Exchange 2003 server. Only a few test accounts have been migrated to the 2007 server and they seem to work fine (can send and receive mail, have access to the GAL and Public Folders) with the exception of access their accounts from outside the domain via webmail. I can put in the private-side address of the server "http://servername.privatedomainname.com/owa" and it works fine. When I go home and try to access our public "http:\\owa.publicdomainname.com" owa site (hosted by Exchange 2003) I get the "Internet Explorerer cannot display the webpage" error. When I click on the "more info" button I get "The problem can be caused by a variety of issues, including: Internet connectivity has been lost. The website is temporarily unavailable. The Domain Name Server (DNS) is not reachable. The Domain Server (DNS) does nothave a listing for the website's domain. If this is an HTTPS (secure) address, click tools, click Internet Options, click Advanced, and check to be sure the SSL and TLS protocols are enable un the the security section. The link that displays on the address bar on the error page points to the Exchange 2003 OWA (http://owa.publicdomainname.com/exchweb/bin/auth/owaauth.dll). It looks like 2003 OWA isn't allowing passthrough to the accounts on the 2007 server? Since I can webmail to the 2007 server within the domain, I'm sure it is some DNS setting or perhaps a setting on the 2003 OWA/IIS.

Question by:OGDITAdmin
  • 2
LVL 58

Expert Comment

ID: 24100286

The 2003 back-end mailbox server will not proxy OWA requests for mailboxes on another server to the remote server. Only a Exchange 2003 front-end server is capable of doing this. This is simply by Exchange design. You would need to connect directly to Exchange 2007's OWA for mailboxes on the Exchange 2007 server.

It is important to note at this stage that the front-end server to which clients connect for remote connectivity must be the version of the highest Mailbox Server on the network. In other words, if you want one single connection point for users to log-on to for OWA or RPC/HTTP, you MUST use an Exchange 2007 CAS server in this instance.

With Exchange 2007, you can open the port through to the Exchange 2007 CAS and have all users access OWA through that server. Since Exchange 2007 is different to Exchange 2003 by design, the Exchange 2007 CAS can proxy requests to legacy 2003 servers.


Author Comment

ID: 24100798
Hi Matt, thanks for the quick reply. This is the a small network (150 users) so there are just the two exchange servers. How do I set the port on the 2007 box to allow OWA access to its mailboxes and the mailboxes on the 2003 box?

LVL 58

Accepted Solution

tigermatt earned 2000 total points
ID: 24100900

The port change required is in the firewall, not in the Exchange Server. You'd simply need to reconfigure the firewall such that port 443 goes to the IP of the Exchange 2007 box, not the 2003 server.

As some further reading, I'd suggest you take a look at http://msexchangeteam.com/archive/2007/02/07/434523.aspx with regards to OWA co-existing between Exchange 2003 and 2007.


Featured Post

Problems using Powershell and Active Directory?

Managing Active Directory does not always have to be complicated.  If you are spending more time trying instead of doing, then it's time to look at something else. For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Stellar Exchange Toolkit: this 5 in 1 toolkit comes loaded with mega-software tool. Here’s an introduction to tools’ usage and advantages:
If you have come across a situation where you need to find some EDB mailbox recovery techniques, then here you will find the same. In this article, we will take you through three techniques using which you will be able to perform EDB recovery. You …
The basic steps you have just learned will be implemented in this video. The basic steps are shown to configure an Exchange DAG in a live working Exchange Server Environment and manage the same (Exchange Server 2010 Software is used in a Windows Ser…
This video shows how to quickly and easily deploy an email signature for all users in Office 365 and prevent it from being added to replies and forwards. (the resulting signature is applied on the server level in Exchange Online) The email signat…
Suggested Courses

877 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question