Solved

How can I use active directory credentials to log on to OWA?

Posted on 2010-08-27
10
560 Views
Last Modified: 2012-05-10
I have one exchange 2003 server with OWA configured.  I want to be able to log on to OWA without having to enter a username and password when I'm already logged on to a domain computer.  

If I use the server name only it will passthrough authentication just fine, for instance https://EXCH01/exchange.  However if I use http://EXCH01.MYORG.MYDOMAIN.COM/exchange it prompts me for the User/Pass.

Both instances resolve to the same internal IP address and the reason I need the FQDN to work as passthrough is because I have a wildcard certificate that would allow my users to get right into their OWA mailbox without having to click OK to proceed with that ominous red bar on top that makes you feel like you did something wrong, lol.
0
Comment
Question by:fd1906
  • 4
  • 2
  • 2
  • +2
10 Comments
 
LVL 28

Expert Comment

by:sunnyc7
ID: 33546359
Please check this guide on how to configure Pass through auth for 2003
http://www.msexchange.org/tutorials/Dual-Pass-Through-Authentication-Exchange-2003-Front-EndBack-End.html
0
 

Author Comment

by:fd1906
ID: 33546439
Thank you for your comment but I don't have a front-end/back-end set up.
0
 
LVL 13

Expert Comment

by:lastlostlast
ID: 33546689
Open IIS manager, Expand Default Web Site....

Go to the properties of 'Exchange virtual directory... move to 'Directory Security' tab and set the authentication to 'Integrated Windows authentication' and uncheck all other options...

P.S: You can only set 'Basic' and 'Integrated Windows Authentication' on Exchange virtual directory...

Perform an IISRESET once this is done and check OWA...

let us know how it goes.
0
 

Author Comment

by:fd1906
ID: 33546864
I tried that too... No dice.
0
 
LVL 33

Expert Comment

by:digitap
ID: 33546897
0
Zoho SalesIQ

Hassle-free live chat software re-imagined for business growth. 2 users, always free.

 
LVL 58

Accepted Solution

by:
tigermatt earned 250 total points
ID: 33547050

This all depends on the configuration of the BROWSER, not the server. The server will already be configured correctly since pass-through works for the direct URL https://servername/exchange.

You need to configure Internet Explorer to add your exch01.myorg.mydomain.com URL to the Local Intranet zone. By default, IE's security settings state that automatic logon will occur if the site is in the Local Intranet zone, but IE can't figure out that the FQDN exch01.myorg.mydomain.com is actually a server on your local Intranet (as far as it's concerned that's an Internet site).

You can assign that URL to the appropriate zone on a domain using Group Policy - look for the Site to Zone Assignment list option: http://technet.microsoft.com/en-us/library/bb457144.aspx

-Matt
0
 

Author Comment

by:fd1906
ID: 33547073
Matt, that makes total sense. Let me try and get back to you.
0
 

Author Comment

by:fd1906
ID: 33547192
That worked.  You're a genius.
0
 
LVL 28

Expert Comment

by:sunnyc7
ID: 33547201
Matt @ good one :)
0
 
LVL 58

Expert Comment

by:tigermatt
ID: 33547749

Thanks, fd1906. Glad it worked out.
0

Featured Post

Enterprise Mobility and BYOD For Dummies

Like “For Dummies” books, you can read this in whatever order you choose and learn about mobility and BYOD; and how to put a competitive mobile infrastructure in place. Developed for SMBs and large enterprises alike, you will find helpful use cases, planning, and implementation.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

This article explains in simple steps how to renew expiring Exchange Server Internal Transport Certificate.
This article lists the top 5 free OST to PST Converter Tools. These tools save a lot of time for users when they want to convert OST to PST after their exchange server is no longer available or some other critical issue with exchange server or impor…
The video tutorial explains the basics of the Exchange server Database Availability groups. The components of this video include: 1. Automatic Failover 2. Failover Clustering 3. Active Manager
This Micro Tutorial hows how you can integrate  Mac OSX to a Windows Active Directory Domain. Apple has made it easy to allow users to bind their macs to a windows domain with relative ease. The following video show how to bind OSX Mavericks to …

896 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

19 Experts available now in Live!

Get 1:1 Help Now