Solved

TMG 2010 asks for credentials twice in OWA

Posted on 2013-12-10
5
1,296 Views
Last Modified: 2013-12-15
Hi all!

I have replaced the old TMG 2010 server with a new one, and now Activesync doesn't work and OWA asks for credentials twice before letting me in.

I have checked that there is only basic and windows integrated authentication on the Exchange server, and forms based on the TMG.

There were some trouble with the certificates, and I had to re-key them, this is maybe some of the problem...

Thanks!
0
Comment
Question by:Sekodata
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 3
  • 2
5 Comments
 
LVL 16

Expert Comment

by:Dirk Mare
ID: 39707965
What does test exchange connectivity tell you?

https://testconnectivity.microsoft.com/

DirkMare
0
 

Author Comment

by:Sekodata
ID: 39707993
Yes, get an error here. But I have tested some more and I see that it works for another domain that is configured on the same TMG and the same Exchange server. The only difference is the certificate. It seems that there is a connection problem/trust between the two servers regarding the new certificate
0
 
LVL 16

Expert Comment

by:Dirk Mare
ID: 39708002
Did you move all the certificates to the new box from the old one.

It could also be something with the certificate. "Test outlook connectivity" should tell you more.

DirkMare
0
 

Accepted Solution

by:
Sekodata earned 0 total points
ID: 39710058
I found the culprit. The certificates were ok, but the reason why the users were asked for credentials twice was because the "users" on the exchange publishing rule were set to only "Authenticated users", instead of "All users". Therefore TMG asked for credentials first, before letting them authenticate to the Exchange server.

Thanks anyway!
0
 

Author Closing Comment

by:Sekodata
ID: 39719764
Resolved it myself
0

Featured Post

Office 365 Training for IT Pros

Learn how to provision tenants, synchronize on-premise Active Directory, implement Single Sign-On, customize Office deployment, and protect your organization with eDiscovery and DLP policies.  Only from Platform Scholar.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

This article aims to explain the working of CircularLogArchiver. This tool was designed to solve the buildup of log file in cases where systems do not support circular logging or where circular logging is not enabled
This article explains how to install and use the NTBackup utility that comes with Windows Server.
In this video we show how to create a Resource Mailbox in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.: Navigate to the Recipients >> Resources tab.: "Recipients" is our default selection …
Exchange organizations may use the Journaling Agent of the Transport Service to archive messages going through Exchange. However, if the Transport Service is integrated with some email content management application (such as an antispam), the admini…

705 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question