Hybrid Exchange 2013 with Legacy Exchange 2007 published in TMG

I have a site with Legacy Exchange 2007 and Exchange 2013 as a hybrid server for mailboxes connected in Office 365.

We have only migrated some mailboxes as we use features that restrict Exchange 2007 and we need to use.

I am trying to figure out the rules needed to publish Exchange Online and Exchange 2007.  Previously we were using Forms for Exchange 2007 and I have it setup with a rule that has a web listener with forms and basic authentication.  Can someone direct me to how this should now be setup with Exchange 2013 as I am seeing that you should point at the Exchange Hybrid 2013 and it will redirect 2007 this does work internally just not through TMG obviously because of forms authentication.

Also how does the rule get create to redirect the user to Exchange online as our Federated server is what gets loaded when you go directly microsoftonline and type the domain user in it sends you to the federated server to authenticate which works at logging you into Exchange online.

Much appreciated
ITSystemSolAsked:
Who is Participating?

[Product update] Infrastructure Analysis Tool is now available with Business Accounts.Learn More

x
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

Vasil Michev (MVP)Commented:
So you have AD FS as well? I am assuming you have published it already and is working as expected?

Exchange Online uses basic auth to authenticate on behalf of the user. Obviously you must pass-thru these requests at the TMG, as it cannot use Forms auth. Here are the corresponding endpoints:

/adfs/services/trust/2005/usernamemixed/
/adfs/services/trust/2005/windowstransport/
/adfs/services/trust/

Here is some more detailed info:

http://blog.auth360.net/2011/09/03/tmg-pre-authentication-options-with-office-365/
0

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
ITSystemSolAuthor Commented:
What about for users still on-premise, I always get the access denied.

Our scenario is Legacy Exchange 2007 with Exchange 2013 hybrid and a number of our users in Exchange online,
0
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Exchange

From novice to tech pro — start learning today.