DaComputerguy-West
asked on
New Install Exchange 2007 - OWA not working
New install of Exchange 2007 - I havent installed a new UCC Certificate yet - its ordered and on its way-When I go to ( Internally ) Http://servername/owa I get ( as expected ) with the 403-Forbidden-Access is denied, when I go to HTTPS::servername/owa I get a Internet Explorer cannot display the web page
-in EMC, Server config / Client Access/OWA Properties - Authentication shows Forms Based
-in IIS Admin, Default Website/OWA -Authentication shows forms based enabled - all others disabled.
-in IIS Admin, Default Website/OWA-IIS SSL Settings shows Check on Require SSL and Client IGNORE
-in IIS Admin, Default Website/OWA BASIC SETTINGS is set to Pass Through
-in IIS Admin, Default Website/OWA Advanced Settings Physical Path Credentials is set to pass through
-in IIS Admin, Default Website/OWA Advanced Settings Behavior / Enabled Protocols is set to HTTP
-in IIS Admin, Default Website/OWA Edit Permissions / Security shows authenticated users has READ privledges
?what am i missing? I ASSUME that OWA would work without a 3rd party certificate ( which I get any day )
500 points, because the client is getting antsy!!!
-in EMC, Server config / Client Access/OWA Properties - Authentication shows Forms Based
-in IIS Admin, Default Website/OWA -Authentication shows forms based enabled - all others disabled.
-in IIS Admin, Default Website/OWA-IIS SSL Settings shows Check on Require SSL and Client IGNORE
-in IIS Admin, Default Website/OWA BASIC SETTINGS is set to Pass Through
-in IIS Admin, Default Website/OWA Advanced Settings Physical Path Credentials is set to pass through
-in IIS Admin, Default Website/OWA Advanced Settings Behavior / Enabled Protocols is set to HTTP
-in IIS Admin, Default Website/OWA Edit Permissions / Security shows authenticated users has READ privledges
?what am i missing? I ASSUME that OWA would work without a 3rd party certificate ( which I get any day )
500 points, because the client is getting antsy!!!
ASKER
It came back and stated:
InternalAuthenticationMeth
InternalUrl : https://servername.domain.local/owa
and then the other 4 sites came back with {Basic, Ntlm, Windows Integrated }
( for the Exchange, Public, Exchweb, and Exadmin sites )
Is that good? or Bad?
InternalAuthenticationMeth
InternalUrl : https://servername.domain.local/owa
and then the other 4 sites came back with {Basic, Ntlm, Windows Integrated }
( for the Exchange, Public, Exchweb, and Exadmin sites )
Is that good? or Bad?
open your IE browser and type in https://localhost/owa this should pull owa for you internally. If you want to access owa externally outside you network please provide me your local domain name and i'll send back what is needed.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
MrPaulT, notes from above was showing that I tried to talk to https://servername/owa from internal, and I know how to do it from outside - Thanks for assist=
E Aravind - My second post shows that I have OWA set for Basic and Forms Based Authent. I believe that is what the link you gave me was asking -
BUT I am interested in finding out if my self signed certificate is working - Tell me more!
E Aravind - My second post shows that I have OWA set for Basic and Forms Based Authent. I believe that is what the link you gave me was asking -
BUT I am interested in finding out if my self signed certificate is working - Tell me more!
your owa virtual directory must have at least basic (authentication settings should not be modified within IIS) which you have
what happened when you browsed to https://servername.domain.local/owa
you can always test disabling fba
set-owavirtualdirectory owa* -formsauthentication:$fals
attempt to go to the site
then re-enable using $true
what happened when you browsed to https://servername.domain.local/owa
you can always test disabling fba
set-owavirtualdirectory owa* -formsauthentication:$fals
attempt to go to the site
then re-enable using $true
ASKER
When i go to another computer and try https://servername/owa ( or on the Exchange Server say https://localhost/owa ) IE just comes back with "Internet Explorer Cannot display the webpage"
If I type in HTTP://servername/owa I get the 403-Forbidden: Access is denied
Turning off Forms Authentication and turning on BASIC gives the same result.
( I remembered to IISRESET /NOFORCE after making the change )
If I type in HTTP://servername/owa I get the 403-Forbidden: Access is denied
Turning off Forms Authentication and turning on BASIC gives the same result.
( I remembered to IISRESET /NOFORCE after making the change )
ASKER
Being led down the trail by e_aravind, I retried recreating the self signed certificate - Just today, I got my Comodo UCC certificate and was able to open the OWA Page, but the kicker was the NONINTUITIVE answer of having EMC use FORMS Authentication ( Domain\users ) BUT in IIS ADMIN - you go into the OWA IIS Admin applet, and INSTEAD of choosing Forms, you select Windows Authentication - Also when I first got it up and running, I could log in, but not make any changes to Calendar or contacts, Then I went into the Default settings of permissions of the folders UNDER the owa folder. setting rights to Windows and Basic. Thanks for the assist
get-owavirtualdirectory | fl inter*