• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 1781
  • Last Modified:

OWA only account with No Sign-On Rights

We have a generic email account that multiple users check using OWA.

We want users to sign onto the domain using their regular credentials, but sign into OWA using our generic account.

We dont want that generic account to be able to sign onto the domain computers. Local logon is restricted, users can only sign onto a workstation via the domain.

Any suggestions?
  • 2
1 Solution
Mike KlineCommented:
You can set "deny log on locally" at the domain level for that account
You may have already done that when you said "local logon is restricted"
josephfreerAuthor Commented:
We arent worried about local logon - only admins can do that. Everyone else authenticates to the domain.

Right now this is a "generic" AD domain account and users can sign onto the domain using the generic account.

We want this as an email only account via OWA with no sign on rights to the domain computers.
Change the setting for "log on to" to only the Exchange server, nothing else.
As long as the account is not an administrator they will be unable to login to the server, but will only be able to use OWA.

Mike KlineCommented:
That way is better, I was over thinking it.  Thanks simon
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Featured Post

Get your problem seen by more experts

Be seen. Boost your question’s priority for more expert views and faster solutions

  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now