Solved

Outlook 2013 -Exchange 2013 NTLM Stuck on NTLM Auth method

Posted on 2014-02-06
2
645 Views
Last Modified: 2014-03-03
I keep getting prompted for my user ID and password because proxy auth method is set to NTLM.  We are trying to move over to Exchange 2013 and I'm one of the betas.  With our old Exch 2007 server and older outlook I could just set this to basic auth and the setting would stick.  Does anyone know why I can't get this setting to be persistent?  Thank you.
0
Comment
Question by:amigan_99
2 Comments
 
LVL 53

Accepted Solution

by:
Will Szymkowski earned 500 total points
ID: 39839537
Do you have your Exchange 2013 CAS server setup with the proper certs? When you introduce any new Exchange server version into your environment configuring the CAS is the first step you need to do.

Authentication issues happen due to a few things
- Virtual Directories set with the proper authentication
- Certificates are correct for Exchange

If you have Exchange 2013 and 2007 in the same environment I would assume that you have setup your certs in the following way...
- autodiscover.domain.com
- mail.domain.com
- legacy.domain.com

Your CSR should be created from the new Exchange server (SAN Cert) and then imported to the 2013 CAS server (or load balancer if used) and also on your Exchange 2007 CAS server/s.

You will then need to change the virtual directories on Exchange 2013 to match what you had on Exchange 2007 (ews, owa, powershell, eas etc).

Then on your Exchange 2007 server you will then modify your Virtual Directories to point to legacy.domain.com/ews, legacy.domain.com/eas etc.

When users connect they will contact Exchange 2013 first and get re-directed if they have a mailbox on Exchange 2007.


Also when you are opening your Outlook and getting prompted hold ctrl+right click the outlook icon in the system tray and select "connection status" This will show you what servers your Outlook client is authenticating to.

If you use Basic Authentication on Exchange 2007 for RPC over HTTP (outlook anywhere) you will need to change this to NTLM.

Will.
0
 
LVL 1

Author Closing Comment

by:amigan_99
ID: 39901504
Thank you.
0

Featured Post

Problems using Powershell and Active Directory?

Managing Active Directory does not always have to be complicated.  If you are spending more time trying instead of doing, then it's time to look at something else. For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

What does UTC stand for?  “Coordinated Universal Time” – Think of this as the true time on Planet Earth that never changes with the exception of minor leap seconds here and there to account for the changes in the planet's rotation.   What does th…
MS Outlook is a world-class email client application that is mainly used for e-communication globally.  In this article, we will discuss the basic idea about MS Outlook, its advanced features, and types of MS Outlook File formats.
The basic steps you have just learned will be implemented in this video. The basic steps are shown to configure an Exchange DAG in a live working Exchange Server Environment and manage the same (Exchange Server 2010 Software is used in a Windows Ser…
Many of my clients call in with monstrous Gmail overloading issues with Outlook. A quick tip is to turn off the All Mail and Important folders from synching. Here is a quick video I made to show you how to turn off these and other folders in Gmail s…

861 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

23 Experts available now in Live!

Get 1:1 Help Now