Want to protect your cyber security and still get fast solutions? Ask a secure question today.Go Premium


How to restrict SBS2003 OWA acess to internal use only for a a subset of users

Posted on 2009-12-22
Medium Priority
Last Modified: 2012-05-08
I have a Small Business Server 2003,one NIC and 20 something users.

A few new users have no dedicated workplaces and dont need Outlook so they get OWA instead. Some ppl in management have Outlook internall and use OWA externally, but the new users should only use OWA internally.

So, how do I restrict OWA to internal use only for a subset of my users?



Question by:ola_erik
  • 3
  • 2
LVL 23

Expert Comment

ID: 26104513
To be honest i don;t believe there is an option of doing this, because you allready allow some users internal access, which means they are able to access the OWA weblink. If your company allows access to this site externally, you cannot block access to it without using any sort of firewall.. If you have ISA, you can use web publishing rules allowing only a specifeid set of users into your domain from externally..

Do you have a FE-BE Exchange configuration?

Author Comment

ID: 26104587
Hi rhandels, I don't have ISA and only one SBS2003 server. Hmm, looks like I'm running out of options, hate to be "creative" with SBS also...

My initial thought wat that there could be IP restriction groups/ permissions for users since these users should only access the server internally. I do route external traffic with PAT through a HW router, so maybe the IP thing is dead already there...

LVL 23

Accepted Solution

rhandels earned 1500 total points
ID: 26104776
The only option you have then is hoping your managers have static (or whatever looks like static enough) ip addresses at their home adresses, but then they will only be able to work there, so tbh that's not the best of all solutions to..

You could try and disable all access to the OWA website externally and get the management to use VPN, that way you might be able to restict access to OWA. As far as i can see you don;t have any other options... And ISA was because that's the only way in which you can block access internally by using your domain credentials (that i now off, all other firewalls have build in user databases).
Creating Active Directory Users from a Text File

If your organization has a need to mass-create AD user accounts, watch this video to see how its done without the need for scripting or other unnecessary complexities.

LVL 65

Expert Comment

ID: 26109447
An ISA server is your only choice here.
Nothing else can do a per server control of OWA access where internal and external are different.


Author Closing Comment

ID: 31668947
ok then, thx ppl

Author Comment

ID: 26127490
hmm ,cant share point it seem, well, thx,

Featured Post

Industry Leaders: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

If you have come across a situation where you need to find some EDB mailbox recovery techniques, then here you will find the same. In this article, we will take you through three techniques using which you will be able to perform EDB recovery. You …
Exchange administrators are always vigilant about Exchange crashes and disasters that are possible any time. It is quite essential to identify the symptoms of a possible Exchange issue and be prepared with a proper recovery plan. There are multiple…
The video tutorial explains the basics of the Exchange server Database Availability groups. The components of this video include: 1. Automatic Failover 2. Failover Clustering 3. Active Manager
There are cases when e.g. an IT administrator wants to have full access and view into selected mailboxes on Exchange server, directly from his own email account in Outlook or Outlook Web Access. This proves useful when for example administrator want…
Suggested Courses

564 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question