Cisco Pix's and OWA 5.5

[1666]

Hello group, we had a new Cisco Pix's firewall put in, and one of our aims was to put our OWA 5.5 server (win2k) on to the DMZ port on the firewall. Everything seems to work fine, except the DMZ, the guy who came in is now away for 3 weeks and I can't wait this long, I have looked at the web interface of the firewall and can see various DMZ settings. However here is the simple problem, for users to get logged on to the OWA server you have to give them "log on locally rights" to the server, so add their domain/username account to this permission, however since this server is now on the DMZ with a different IP range it can't "see" the domain. I have tried adding it back to the domain, but it displays a message saying it can't find a domain controller (NT 4.0 domain). It can ping most of the servers, not the PDC, but it can the BDC. I guess it's some kind of rule I need to set. I just need to add these domain accounts to the "log on locally" in Local Policy > user right assignments.

Hope you can help!

Andy

 

[yizhar]

HI.

See this one:
thread35-436287

I think that allowing access from your web server on DMZ to internal servers, means that your internal network is also exposed. Is this what you want?

Bye
Yizhar Hurwitz

http://come.to/yizhar

http://teachers.sivan.co.il/yizhar

 

[baddos]

I have OWA for exchange 5.5 too. The webserver needs to have access to a domain controller for your domain to authenticate users. It also needs to communicate w/ the Exchange server. You will need to allow it to communicate either through the firewall, or throw another nic in the webserver and "multihome" the server.