Solved

Exchange 2010 -

Posted on 2014-09-23
5
15 Views
Last Modified: 2016-06-14
I have multiple domains in an Exchange 2010 setup.  One domain is in Europe and one is in the US.  How can i stop a European user from going to the US OWA server and logging in ?  Currently, if a European user goes to the US OWA site and enters europeandomain/username and his password, he connects.  I want to change this so only US users can log into the US OWA server using the US domain.  Thanks
0
Comment
Question by:iskrob
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
  • 2
5 Comments
 
LVL 16

Expert Comment

by:Rajitha Chimmani
ID: 40339905
The best way is to block the URL access at user desktop level. CAS redirection or proxying will still allow them to access the US OWA website.
0
 

Author Comment

by:iskrob
ID: 40339928
The problem with that is they may not be at one of my devices.  Blocking the URL will only work if it's my device.  I need to block it at the OWA or authentication level.
0
 
LVL 16

Accepted Solution

by:
Rajitha Chimmani earned 500 total points
ID: 40339975
You might have to modify the permissions on OWA virtual directory. But, you need to create group which has all users from US domain. In IIS, open the permissions for OWA directory on US domain CAS server, remove Authenticated users and add the same permissions for the group that you created. It has to be tested though.
0
 

Author Comment

by:iskrob
ID: 40339999
That sounds like a good idea.  I'll give that a try.  I could just use domain users instead of authenticated users.  Domain users would limit the users allowed to sign on just to my domain.  Thank you
0

Featured Post

PeopleSoft Has Never Been Easier

PeopleSoft Adoption Made Smooth & Simple!

On-The-Job Training Is made Intuitive & Easy With WalkMe's On-Screen Guidance Tool.  Claim Your Free WalkMe Account Now

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

In-place Upgrading Dirsync to Azure AD Connect
Unified and professional email signatures help maintain a consistent company brand image to the outside world. This article shows how to create an email signature in Exchange Server 2010 using a transport rule and how to overcome native limitations …
The video tutorial explains the basics of the Exchange server Database Availability groups. The components of this video include: 1. Automatic Failover 2. Failover Clustering 3. Active Manager
To add imagery to an HTML email signature, you have two options available to you. You can either add a logo/image by embedding it directly into the signature or hosting it externally and linking to it. The vast majority of email clients display l…

696 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question