Exchange 2010/2003 Coexistance Webmail Login Twice Published with TMG
I've seen many other postings about this, but the answer is always to enable SSO on a single listener for both URLs in TMG. That doesn't seem to be working for me. I have a legacy 2003 OWA server and new 2010 CAS server. They are both published through TMG. Both on the same listener. But I still always have to enter my password twice. They are on 2 separate firewall rules, which from my understanding is correct as each one can only point to a single internal server, but maybe my understanding of that is not correct. On the SSO tab in TMG, I have Enable Single Signon Checked and my root domain listed in the box. Anyone have any other ideas where to look? Thanks! Brian
February 2nd, 2011 1:58pm

Hi Brian, Please see my article on configuring 2003 & 2010 with ISA 2006, this will apply to TMG as well. http://ilantz.wordpress.com/2010/03/12/how-to-publish-exchange-2003-and-exchange-2010-with-isa-2006/ Best Regards, Ilantz
Free Windows Admin Tool Kit Click here and download it now
February 3rd, 2011 8:11am

Thanks for the reply. I have followed these instructions already when I did my config. I still have the problem. Regards, Brian
February 3rd, 2011 12:33pm

Hi Brian, Have you disabled Forms authentication on both 2010 and 2003 ?
Free Windows Admin Tool Kit Click here and download it now
February 4th, 2011 3:34am

Yes, forms based authentication is disabled on both 2010 and 2003 and left on on TMG. I found the problem. On the Single Sign On page in TMG, it asked for a domain. I thought it meant our AD domain because I was thinking it needed that to append to the username to be able to use it. My mistake. Our internal and external domains are not the same and it was asking for the external domain. When I canged that, it fixed the problem.
March 21st, 2011 11:31pm

This topic is archived. No further replies will be accepted.

Other recent topics Other recent topics