Multiple owa sites on a single server 2012 with exchange 2013 (mailbox, cas)

hi,
I'm trying to set up an exchange server 2013 on windows 2012 with all roles installed for 2 owa virtual directory, one for integrated windows authentication and the other for forms-based authentication. I followed a tutorial for exchange 2010.

http://technicaljeditrials.info/2011/02/28/exchange-2010-multiple-owaecp-directories-part-1/


Step 1: IP Address

Obtain a second IP address and add it to the NIC of your server.

Step 2: DNS

Add a DNS entry for That secondary IP address for the name we will want to use in the new FBA OWA Web site. I have chosen "testwebmail." Be sure there is a valid SSL certificate (recommended to have UC or SAN SSL certs) on the server Which has the new name "testwebmail" that will be used in the certificate.

Step 3: New Web Site

Create a new web site in IIS on the Client Access Server and bind it to the new IP address used in step 1.

Step 4: Adding Exchange Virtual Directories

The web site has been created and bound to the secondary IP address of our server. Also the DNS record That will be used to access the OWA FBA new page was added to DNS. The next step is to go into EMS and begin adding our virtual directories for OWA and ECP.

Login to the Exchange server and open the Exchange Management Shell. Then run Get-Get-OWAVirtualDirectory and ECPVirtualDirectory to see the default OWA and ECP directories.

New-OWAVirtualDirectory -WebSiteName FBA -InternalUrl https://testwebmail.mylab.ad/owa

New-ECPVirtualDirectory -WebSiteName FBA -InternalUrl https://testwebmail.mylab.ad/ecp

Step 5: Configure the Virtual Directories

To configure the virtual directories we will disable FBA on the Default Web Site OWA and ECP virtual directories

Set-OWAVirtualDirectory -Identity "OWA (Default Web Site)" -WindowsAuthentication $true -BasicAuthentication $false  -FormsBasedAuthentication $false

Set-ECPVirtualDirectory -Identity "ECP (Default Web Site)" -WindowsAuthentication $true -BasicAuthentication $false  -FormsBasedAuthentication $false

Step 6: iisreset

now if I access the default site I log in with windows integrated authentication, but when I try to access the second site with forms authentication tells me username or password incorrect

Tell me you know where I'm wrong?

thanks

Greetings

Daniele

December 27th, 2012 10:04pm

Did you configure the settings on the FBA virtual directory?
Free Windows Admin Tool Kit Click here and download it now
December 27th, 2012 10:15pm

Hello,

Something like this:

New-OWAVirtualDirectory -WebSiteName "FBA"

Enable the Basic authentication via running the following command:

Set-OWAVirtualDirectory -Identity "yourservername\owa (FBA)" -BasicAuthentication $true

Restart the IIS admin service in services.msc

Thanks,

December 28th, 2012 9:07am

hi,

does not work,
if I use basic and integrated respectively for the two sites work but if I try to use form-based for one of the two sites, the authentication fails and always returns user or password is incorrect

Free Windows Admin Tool Kit Click here and download it now
December 28th, 2012 11:48am

Hi,

I have try to follow this tutorial with exchange 2013 but I have a problem with the powershell part (step 4). When I try to create the new OWA virtual directory, I have this message :

[PS] C:\Windows\system32>New-OWAVirtualDirectory -WebSiteName mynewowasite
Argument: -Role ClientAccess
    + CategoryInfo          : InvalidArgument: (:) [New-OwaVirtualDirectory], ArgumentException
    + FullyQualifiedErrorId : 4C75FA67,Microsoft.Exchange.Management.SystemConfigurationTasks.NewOwaVirtualDirectory
    + PSComputerName        : exchcas-01.toto.com


The IIS web site name created in step 3 is "mynewowasite".


The get-owavirtualdirectory is working well :

[PS] C:\Windows\system32>Get-OwaVirtualDirectory

Name                                    Server                                  OwaVersion
----                                    ------                                  ----------
owa (Default Web Site)                  EXCHCAS-01                              Exchange2010

Anyone has an idea how to solve this ?

January 31st, 2013 10:06pm

Hi,

I am facing a very similar problem, trying to recreate the ECP Virtual Directory. I am also getting the Argument: -Role ClientAccess error:

Argument: -Role ClientAccess
    + CategoryInfo: InvalidArgument: (:) [New-EcpVirtualDirectory], ArgumentException
    + FullyQualifiedErrorId: 3C22AE5F,Microsoft.Exchange.Management.SystemConfigurationTasks.NewEcpVirtualDirectory

Were you ever able to find a way around it?

Free Windows Admin Tool Kit Click here and download it now
April 4th, 2013 11:51am

Is "mynewowasite" a web site you have created in IIS?  Or are you trying to recreate an OWA virtual directory in the default web site?  In that case it would be -WebSiteName "Default Web Site".

April 15th, 2013 11:12pm

Hi Ed & others also simon.

we have a similar thread going on here 

http://social.technet.microsoft.com/Forums/exchange/en-US/9b235f05-1d50-4fd6-8a26-4a3277aa9a1d/unable-to-create-new-owa-vdir-in-e15-using-shell-problem-role-switch

what i understand is that the role switch is a must to make a new-owavirtualdirectory in 2013 because it will be built for that particular role.

Now MS publishers have already publish wrong info on technet that the -role switch uses frontent or backend as arguments.

now the invalid error tells up that you need to your clientaccess or mailbox as parameters BUT that errors out too.

I am working on this and will let you guys know for sure if it gets resolved.

Free Windows Admin Tool Kit Click here and download it now
June 27th, 2013 11:15pm

on my side this command worked fine :

New-OwaVirtualDirectory -Role ClientAccess -Server srvcas2 -WebSiteName "cas2.domain.com"

I think that the error "CategoryInfo: InvalidArgument: (:) [New-EcpVirtualDirectory], ArgumentException" refer to the missing argument "-Server", which is refered as optional, but maybe need to be mentionned (because I have multiple CAS ?)

hope that helps !

July 2nd, 2013 1:35pm

You are right -Server is not optional its required when adding -role with multiple cas boxes.
Free Windows Admin Tool Kit Click here and download it now
July 2nd, 2013 5:03pm

on my side this command worked fine :

New-OwaVirtualDirectory -Role ClientAccess -Server srvcas2 -WebSiteName "cas2.domain.com"

I think that the error "CategoryInfo: InvalidArgument: (:) [New-EcpVirtualDirectory], ArgumentException" refer to the missing argument "-Server", which is refered as optional, but maybe need to be mentionned (because I have multiple CAS ?)

hope that h

July 2nd, 2013 5:06pm

Works in my case.
Free Windows Admin Tool Kit Click here and download it now
July 2nd, 2013 5:06pm

Did you create a separate application pool and file directory for the second web site?

July 4th, 2013 6:32pm

This topic is archived. No further replies will be accepted.

Other recent topics Other recent topics