Mark Gould
asked on
Disable access to Exchange 2016 REMOTELY from Outlook 2013/16 for some users
We need the ability for certain users to use Outlook remotely with MAPI over HTTPS
We need ALL users to be able to use Outlook on the LAN
Our internal and external Autodiscover URL addresses are the same as is recommended good practice
Single server
Unless a user has explicitly been enabled for remote MAPI access, I would like to block it
How can I do this?
We need ALL users to be able to use Outlook on the LAN
Our internal and external Autodiscover URL addresses are the same as is recommended good practice
Single server
Unless a user has explicitly been enabled for remote MAPI access, I would like to block it
How can I do this?
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
But when I change the internal URL to in this case internalserver.internaldom ain.local, I get SSL warnings on the clients as I can't assign a verified SSL certificate to the internalserver name.
How would I do this?
How would I do this?
ASKER
I assume I could have
mail.domain.com having both internal and external DNS as the external MAPI
mailserver1.domain.com having internal DNS only as the internal MAPI
Would that work
mail.domain.com having both internal and external DNS as the external MAPI
mailserver1.domain.com having internal DNS only as the internal MAPI
Would that work
ASKER
Answering my own questions here
YES, providing the MAPI internal and External are different
YES, providing the MAPI internal and External are different
ASKER
Alas this did not work, we were finding that users with the MapiBlockOutlookExternalCo nnectivity set to false were only being served the internal MAPI address and not the external address which makes no sense.
They are the correct way round in Exchange
They are the correct way round in Exchange
ASKER
In addition, you can use the MapiBlockOutlookExternalCo
Alas this does not work rather strangly