Solved

Exchange 2010 OWA access from Domain Joined verses non-domain joined

Posted on 2014-02-04
4
227 Views
Last Modified: 2014-04-03
I have a client that currently uses messageware but we would like to remove this requirement. The function that we need to replace and find a solution for using Exchange 2010 is that currently, messageware scans the user's registry that is accessing OWA and tries to locate a entry that identifies the computer as domain joined. This registry setting is distributed to all domain joined workstations using Group Policy. This allows the organization to give different access to company owned computers that are domain joined, and non company owned computers are restricted. Specifically, only the domain joined PCs are allowed to have full access to download attachments. These machines are really not restricted at all. The non-domain joined however are restricted in many ways, caching, attachments and so on... Is there any inherent way I can duplicate this with Exchange 2010 OWA mailbox policies and segmentation? I cannot find anything based on the couple of hours I have spent searching the web...
0
Comment
Question by:Robguad
  • 2
  • 2
4 Comments
 
LVL 63

Accepted Solution

by:
Simon Butler (Sembee) earned 500 total points
Comment Utility
There isn't that functionality built in to the product which is why MessageWare have it in their product. I cannot think of a feature in Messageware that is available in the native OWA.
The only option you have is the Public/Private computer option on the OWA, but that depends on the end user selecting the correct option. While you can default it to Public, once users realise that changing the option allows them to do what they like, it is useless.

OWA doesn't really make a distinction between internal and external users other than that option. Policies usually apply at a mailbox level and are designed for controlling the user, not the connecting computer.

About the only suggestion I can come up with is to have two separate servers, one for internal traffic, one for external, which have a different configuration on them. That will of course mean additional Exchange licences. I don't think having it in a different web site on the same server would work.

For domain machines that are outside the network, they would have to VPN in to use OWA unrestricted.

Simon.
0
 

Author Comment

by:Robguad
Comment Utility
I've requested that this question be deleted for the following reason:

No one answered the question
0
 
LVL 63

Expert Comment

by:Simon Butler (Sembee)
Comment Utility
I disagree that the question wasn't answered - I have fully answered the point that you asked about - simply put, it isn't possible.
0
 

Author Comment

by:Robguad
Comment Utility
Im sorry, I didnt read the question... I had two open... i thought this was the other one where I didnt receive any replies
0

Featured Post

How your wiki can always stay up-to-date

Quip doubles as a “living” wiki and a project management tool that evolves with your organization. As you finish projects in Quip, the work remains, easily accessible to all team members, new and old.
- Increase transparency
- Onboard new hires faster
- Access from mobile/offline

Join & Write a Comment

Easy CSR creation in Exchange 2007,2010 and 2013
Check out this infographic on what you need to make a good email signature that will work perfectly for your organization.
In this video we show how to create a Distribution Group in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.: First we need to log into the Exchange Admin Center. Navigate to the Recipients >>…
In this video we show how to create a Shared Mailbox in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.: First we need to log into the Exchange Admin Center. Navigate to the Recipients >> Sha…

771 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

10 Experts available now in Live!

Get 1:1 Help Now