Exchange 2010 Multiple OWA Sites

Posted on 2014-04-22
Last Modified: 2014-04-24
Greetings. We've got an entity within our organization which would like a different OWA logon page (I've customized the default one for the larger organization).  Our UCC cert does have the smaller organization's fqdn in it and the mx record in dns for "" gets them to our OWA page.

I've read that a second OWA virtual directory can be created.

Do I need a second IP / NIC on the mail server to make this happen ?  If so, could someone direct me to some detailed procedures ?

Thanks much.
Question by:lapavoni
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions

Expert Comment

by:Mahesh Sharma
ID: 40014298
LVL 63

Accepted Solution

Simon Butler (Sembee) earned 500 total points
ID: 40015726
You don't need a second NIC.
You will need a second IP address, both internally and externally.
That is because SSL is a 1:1 binding to IP addresses.

So setup the second IP address to Exchange. Then change the default web site to be bound to the first address specifically (it will be on "any" by default).
Create a second web site in IIS and adjust the bindings, including SSL for it.

Then create new virtual directories. You will need OWA, ECP and EWS for it to work correctly. OAB and Outlook Anywhere can stay on the default (the end users will not see that), as can ActiveSync, as that can cause problems outside of the default.


Author Comment

ID: 40015741
I've got two NICs that are teamed on the server.  Will that be an issue ?  Just add a second IP to the team ?

Also, it's bound to  Does loopback apply to all addresses or just the first one ?
Independent Software Vendors: We Want Your Opinion

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

LVL 63

Expert Comment

by:Simon Butler (Sembee)
ID: 40015775
What is bound to ? The second web site?
It needs to be bound to a specific address, not the loopback address. Don't touch the default site, other than to change the * to the specific address.

Being a team means nothing - as you have a virtual NIC which holds the address.


Author Comment

ID: 40015799
The first website is bound to  .... not to *
LVL 63

Expert Comment

by:Simon Butler (Sembee)
ID: 40017210
The only binding you have to change is the http 80 *, no others.
You should have two bound to port 80, and *.

There will then be one, maybe two bound to HTTPS. You will need to change any of those to a specific address.

LVL 11

Expert Comment

ID: 40017693
I disagree with Simon on this one.

I have, on my ISP DNS pointing to the same IP.

On my IIS I have a redirect from either to the virtual directory of owa.  This was for legacy purposes when the company was not using autodiscover for their exchange server and the "webmail" was use for OWA only.

Now, in your case you can have a name for the other organization, copy all OWA virtual directory onto a new directory of your choice (lets called "branch" for now) and add it to the default web site.  Modify your logon and logoff .aspx files.  When you want the main owa just use and for the other one you could use

So when user type in their browser they will get to the main OWA and the other organization users will use to get their OWA.

As you can see this works the same way your actual services do (,,
LVL 63

Expert Comment

by:Simon Butler (Sembee)
ID: 40017899
Except that isn't a supported method.
The only supported route is to use a different web site and use new-owavirtualdirectory


Author Closing Comment

ID: 40020162
I will read up on the alternative solution, but the supported one is always preferable.  Thank you again, Simon.

Featured Post

Ransomware: The New Cyber Threat & How to Stop It

This infographic explains ransomware, type of malware that blocks access to your files or your systems and holds them hostage until a ransom is paid. It also examines the different types of ransomware and explains what you can do to thwart this sinister online threat.  

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Find out what you should include to make the best professional email signature for your organization.
How to resolve IMCEAEX NDRs in Exchange or Exchange Online related to invalid X500 addresses.
In this video we show how to create an email address policy in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.:  First we need to log into the Exchange Admin Center. Navigate to the Mail Flow…
To show how to generate a certificate request in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.:  First we need to log into the Exchange Admin Center. Navigate to the Servers >> Certificates…

737 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question