Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations Chriss Miller on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

Outlook Web Access

Status
Not open for further replies.
jrwinterburn

jrwinterburn

IS-IT--Management
Jul 26, 2004
72
GB
Dear Tekkies,

I am stumped with a problem with Outlook Web Access on IIS for Exchange 5.5.

I have the following setup:

Firewall -> Public IP
Web Server -> 10.10.10.x (DMZ) -> Domain ABC
Exchange Server -> 99.99.99.x -> Domain CBA

NAT is running on the firewall, so both domains/subnets can see each other across Windows. When I installed OWA on the web server (on the DMZ subnet 10.10.10.x) I did it with an administrator login that exists on the Domain CBA and specified the IP of the exchange server during this installation.

However, when I try to login as a user on OWA, I have the following problems:

If I specify: CBA/username, I get an error in Event Viewer stating that the username/password is invalid. If I specifty just username, I get no error in Event Viewer, but obviously no mailbox can be displayed.

How can I make sure that users who login with CBA/username on OWA (in ABC domain) are authenticated against the domain controller in the ABC domain and can then view their Exchange mailbox?

Complicated, I know, but I need to have OWA in the DMZ separate from the internal network.

Thanks for any help in advance,

Jonathen
 
Sort by date Sort by votes
is probably not a good idea to send password over plain text if your exchange box is in the DMZ....otherwise you can specified the domain name before the user name under authentication method....or use it with SSL setup...i've not setup SSL on my exchange 5.5 box myself but there are a lot of info. on the web.

SET CRTL ALT DEL = #728
-----------------------
greg
 
Upvote 0 Downvote
The web (OWA) server should be configured as a standalone server, not as a separate domain. Otherwise, you have to set up a trust relationship. Open UDP port 37 between the DMZ and your internal network (I think you need one other port - your firewall log will tell you). This allows the OWA server to pass authentication requests to the domain controller. It also makes it unnecessary to use domain\username when logging in.

My recollection is a little hazy, so it may actually be necessary for the OWA server to be part of the domain. Perhaps someone else can clear this up.

Of course, I could be all wet, and it could just be that you have the syntax wrong! Try changing the / to \.

Good luck,
Bob
 
Upvote 0 Downvote
Hi, look at the FAQ : How to configure OWA in a DMZ, in this Forum.
It can help you!

Bye.
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

microsGuy16
  • Locked
  • Question
Global Address List Names not showing in Outlook OWA 365
Replies
0
Views
3K
microsGuy16
microsGuy16
Rohit Bareja
  • Locked
  • Question
View and access only own records, and not the records by others on SharePoint.
Replies
3
Views
2K
garysm
garysm
dajohnso
  • Locked
  • Question
Outlook POP3 cant connect to exchange 2007
Replies
3
Views
339
BN75
BN75
ADB100
  • Locked
  • Question
Outlook 2016 thumbnail photos & OAB oddness
Replies
0
Views
206
ADB100
ADB100
DrB0b
  • Locked
  • Question
Exchange 2019 Full Access to all mailboxes
Replies
3
Views
478
DrB0b
DrB0b

Part and Inventory Search

Sponsor

Back
Top