Want to protect your cyber security and still get fast solutions? Ask a secure question today.Go Premium

x
?
Solved

OWA Permissions

Posted on 2011-02-23
5
Medium Priority
?
633 Views
Last Modified: 2012-06-21

The exchange organisation contains two servers named SKYP1 and OWA1. Both servers run Exchange Sever 2003. SKYP1 is configured as a mailbox server. OWA1 is configured as a front end server. OWA1 is configured to allow users to access their email by using Microsoft Outlook Web Access over SSL

Internet users report that they cannot access OWA1. However, Intranet users can use either HTTP or HTTPS to access Outlook Web Accexx by using only HTTPS?

a. Configure the firewall to permit internet users to access port 443 on OWA1. Configure the default Web site OWA1 to require SSL

b. Configure the firewall to permit interner users to access port 80 on OWA1. Configure the default Web site on SKYP1 to require SSL and 128-bit encryption

c. Configure the firewall to allow internet users to access port 993 on OWA1. Configure the default web site on SKYP1 to require and 128-bit encryption

d. Configure the firewall to allow internet users to access port 143 on OWA1. Configure the Exchange HTTP virtual server on OWA1 to enable forms-based authentication for Outlook Web Access

---b.Configure the firewall to permit internet users to access port 80 on OWA1 this will allow http permissions and 443 for https.

However just to ask is OWA created by default when we create exchange server. Do we create a seperate server for OWA also do we keep a storage group where we store the OWA data. I do not understand the seperate server.---------
0
Comment
Question by:kunalclk
  • 3
5 Comments
 
LVL 31

Accepted Solution

by:
MegaNuk3 earned 900 total points
ID: 34968007
Is OWA1 ticked as a frontend server in ESM?
Remove the "RequireSSL" option off the /Exchange virtual directory on the backend server SKYP1

Owa is installed by default when you install exchange. A front end server is good for performance as you offload all your Internet traffic to it - OWA, POP, IMAP, ActiveSync, you can also offload Internet SMTP traffic to it too.

It is not essential to have a separate server for OWA, just nice.
0
 
LVL 31

Expert Comment

by:MegaNuk3
ID: 34968025
If you have forms based authentication on OWA1, then ensure the /exchange virtual directory on skype1 has NO SSL and allows "Basic" and "windows Integrated" authentication
0
 
LVL 13

Assisted Solution

by:lauchangkwang
lauchangkwang earned 600 total points
ID: 34968030
>>However just to ask is OWA created by default when we create exchange server.

When the time you install the Server 2003, there is an options to checked whether you want to activate / install the OWA together

OWA data is the same as the storage data (emails) , normally the front end server is just an interface / guard to secure the real server
0
 
LVL 2

Author Closing Comment

by:kunalclk
ID: 34975828
thnx
0
 
LVL 31

Expert Comment

by:MegaNuk3
ID: 34977477
Thanks for the points, can Internet users now access OWA1?
0

Featured Post

Get your Disaster Recovery as a Service basics

Disaster Recovery as a Service is one go-to solution that revolutionizes DR planning. Implementing DRaaS could be an efficient process, easily accessible to non-DR experts. Learn about monitoring, testing, executing failovers and failbacks to ensure a "healthy" DR environment.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Understanding the various editions available is vital when you decide to purchase Windows Server 2012. You need to have a basic understanding of the features and limitations in each edition in order to make a well-informed decision that best suits …
In this post, I will showcase the steps for how to create groups in Office 365. Office 365 groups allow for ease of flexibility and collaboration between staff members.
The video tutorial explains the basics of the Exchange server Database Availability groups. The components of this video include: 1. Automatic Failover 2. Failover Clustering 3. Active Manager
This video shows how to quickly and easily deploy an email signature for all users in Office 365 and prevent it from being added to replies and forwards. (the resulting signature is applied on the server level in Exchange Online) The email signat…
Suggested Courses

578 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question