Child domains users and OWA error
Hello! I have only one Exchange 2007 server (CAS + HUB + MAILBOX). OWA is published via ISA Server 2006. Internal access to OWA (http://INTERNAL_CAS_NAME/OWA) is working perfectly for all users. The problem happens when any user of any child domain attempts to access the OWA from the Internet. The root domain users can access normally using the external URL. The problem only happens with users from child domains. When a user child domain user tries to access OWA over the Internet, the following error occurs (after entering credentials): HTTP 500 Internal Server Error When I disable the option "Show Friendly HTTP Error Messages" in IE, the following message appears: No authority could be contacted for authentication. Actions taken: - The Exchange server was restarted. - The ISA server was restarted. - Checking the Event Viewer of the ISA and Exchange servers, and no related errors was found. NOTE: - No update was installed on the servers. - OWA not using SSL. - The problem happened suddenly. Two weeks ago, child domains users had no problems to access OWA. - The ISA and Exchange servers are members of the root domain. How to solve this problem? Thanks!
May 25th, 2011 9:37am

Are you using forms-based authentication? Have you specified a default domain in the OWA virtual directory settings? Users are entering in the format DOMAIN\USERID, right?Ed Crowley MVP "There are seldom good technological solutions to behavioral problems."
Free Windows Admin Tool Kit Click here and download it now
May 25th, 2011 12:16pm

Hello Ed, Are you using forms-based authentication? No. Have you specified a default domain in the OWA virtual directory settings? No. Users are entering in the format DOMAIN\USERID, right? Yes.
May 25th, 2011 12:22pm

Is there any reason you're not using FBA? In fact, I prefer joining the ISA server to the domain and using the FBA as provided by ISA because it forces clients to authenticate before their requests are passed through the ISA server. I've never implemented ISA without using FBA either in ISA or in the Exchange CAS, so I really am out of ideas. You might want to try FBA or open a ticket with Microsoft Support if nobody else chimes in.Ed Crowley MVP "There are seldom good technological solutions to behavioral problems."
Free Windows Admin Tool Kit Click here and download it now
May 25th, 2011 12:54pm

Thanks for the help! The problem was solved. Slow links between sites were causing the problem.
May 31st, 2011 1:44pm

This topic is archived. No further replies will be accepted.

Other recent topics Other recent topics