Solved

Hybrid Exchange 2013 with Legacy Exchange 2007 published in TMG

Posted on 2014-02-21
2
789 Views
Last Modified: 2014-03-31
I have a site with Legacy Exchange 2007 and Exchange 2013 as a hybrid server for mailboxes connected in Office 365.

We have only migrated some mailboxes as we use features that restrict Exchange 2007 and we need to use.

I am trying to figure out the rules needed to publish Exchange Online and Exchange 2007.  Previously we were using Forms for Exchange 2007 and I have it setup with a rule that has a web listener with forms and basic authentication.  Can someone direct me to how this should now be setup with Exchange 2013 as I am seeing that you should point at the Exchange Hybrid 2013 and it will redirect 2007 this does work internally just not through TMG obviously because of forms authentication.

Also how does the rule get create to redirect the user to Exchange online as our Federated server is what gets loaded when you go directly microsoftonline and type the domain user in it sends you to the federated server to authenticate which works at logging you into Exchange online.

Much appreciated
0
Comment
Question by:ITSystemSol
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
2 Comments
 
LVL 40

Accepted Solution

by:
Vasil Michev (MVP) earned 500 total points
ID: 39877059
So you have AD FS as well? I am assuming you have published it already and is working as expected?

Exchange Online uses basic auth to authenticate on behalf of the user. Obviously you must pass-thru these requests at the TMG, as it cannot use Forms auth. Here are the corresponding endpoints:

/adfs/services/trust/2005/usernamemixed/
/adfs/services/trust/2005/windowstransport/
/adfs/services/trust/

Here is some more detailed info:

http://blog.auth360.net/2011/09/03/tmg-pre-authentication-options-with-office-365/
0
 

Author Comment

by:ITSystemSol
ID: 39882187
What about for users still on-premise, I always get the access denied.

Our scenario is Legacy Exchange 2007 with Exchange 2013 hybrid and a number of our users in Exchange online,
0

Featured Post

Problems using Powershell and Active Directory?

Managing Active Directory does not always have to be complicated.  If you are spending more time trying instead of doing, then it's time to look at something else. For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

This article explains how to install and use the NTBackup utility that comes with Windows Server.
As cyber crime continues to grow in both numbers and sophistication, a troubling trend of optimization has emerged over the last year.
Polish reports in Access so they look terrific. Take yourself to another level. Equations, Back Color, Alternate Back Color. Write easy VBA Code. Tighten space to use less pages. Launch report from a menu, considering criteria only when it is filled…
A company’s greatest vulnerability is their email. CEO fraud, ransomware and spear phishing attacks are the no1 threat to a company’s security. Cybercrime is responsible for the largest loss of money to companies today with losses projected to r…

749 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question