Authentication problems using /Exchange virtual Directory to access 2007 OWA
I am currently working on my company's Ex2003>2007 transition and I am running into a problem with users that are trying to access OWA using the https://mycompany.local/exchange virtual directory. I have setup forms based auth on all my virtual directories and set them to use "User Name" and specified the correct domain. When a 2003 mailbox user authenticates they are presented with their 2003 OWA mailbox without any problems. If a 2007 mailbox user accesses https://mycompany.local/exchange and use only their user name "jsmith" they are prompted with "The user name or password that you entered is not valid. Try entering it again.". If I use "mycompany\jsmith" or jsmith@mycompany.local they are proxied to the /OWA virtual directory correctly and are presented with their OWA 2007 Mailbox as they should be. This is going to be a huge headache if I cannot have my users access the same url, more importantly because the /exchange directory is what our external reverse proxy is pointing to and I do not want to have to explain to all my users they will now have to authenticate with their full email address. Here is a little background on my environment:
Exchange 2003:
1 Front End Exchange 2003 SP2 (Windows Server 2003 (SP1)
2 Backend Exchange 2003 SP2 (Windows Server 2003 SP1)
Exchange 2007
1 CAS/HubTS Exchange 2007 SP1 rollup 3 (Windows Server 2008 RTM)
2 Mailbox Exchange 2007 SP1 rollup 3 (Windows Server 2008 RTM)
Thanks for your help!
September 3rd, 2008 7:47pm
Hi,
You should change your settings on the CAS server for the owa virtual directory. You can do this by starting the Exchange Management Console
- go to server configuration
- select the CAS server
- go to the tab Outlook Web Access
- get the properties of the OWA virtual directory
- change the authentication method to: user name only
- fill in the logon domain
Regards,
Johan
visit my site: www.johanveldhuis.nl
Free Windows Admin Tool Kit Click here and download it now
September 3rd, 2008 8:55pm
Hello,
You can set OWA to login without domain name...
OWA login without DomainName
September 4th, 2008 4:15am