Welcome to ISAserver.org
Forums |
Register |
Login |
My Profile |
Inbox |
RSS 
|
My Subscription |
My Forums |
Address Book |
Member List |
Search |
FAQ |
Ticket List |
Log Out
OWA Publishing issue (Yet again)
|
Users viewing this topic:
none
|
Logged in as: Guest
|
Login  | |
|
OWA Publishing issue (Yet again) - 16.Aug.2008 12:11:27 PM
|
|
|
steamngn
Posts: 18
Joined: 6.Aug.2008
Status: offline
|
I am SO close, but so far...
I have an exchange 2k3 box with OWA enabled over ssl. I have published the exchange server on the ISA server, and I think I have it 99% correct. If I type
https://mail.company.com on an internal client it will redirect to the exchange web as default and users can log in to OWA just fine. If I go to an external client, however, I need to type https://mail.company.com/exchange in order to connect. If I leave off the /exchange part then ISA shows an error:
12202 The ISA Server denied the specified Uniform resource locator.
I also get the warning on the remote client that the certificate is not valid for the site. I am thinking that this is why the external client must type the /exchange, but I'm not sure. Can someone guide me through getting this to work correctly? Do I need to edit the email server certificate or create a new one due to the redirect to exchange by default? And what am I missing that ISA won't allow this to work without /exchange?
Andy
_____________________________
There is never enough time to write code correctly; there is always enough time for a hotfix...
|
|
|
|
|
RE: OWA Publishing issue (Yet again) - 18.Aug.2008 9:10:29 AM
|
|
|
tshinder
Posts: 47490
Joined: 10.Jan.2001
From: Texas
Status: offline
|
Hi Andy,
You need to redirect users who can't remember the path. I did a 7 part article series based on a talk/demonstration I did at ExchangeConnections a couple of years ago. Toward the end of the series I show you how to create the redirect.
HTH,
Tom
_____________________________
Thomas W Shinder, M.D.
Sr. Consultant/Technical Writer
Prowess Consulting http://www.prowessconsulting.com/
Blog: http://blogs.isaserver.org/shinder/
GET THE NEW ISA 2006 Book!: http://tinyurl.com/2gpoo8
|
|
|
|
|
RE: OWA Publishing issue (Yet again) - 18.Aug.2008 9:21:29 AM
|
|
|
steamngn
Posts: 18
Joined: 6.Aug.2008
Status: offline
|
I am blessed wit hthe great DR. Shinder!
Greetings!
Ok, how/where can I find this info? i managed to get the certificate issue resolved, but the redirect has me baffled yet...
I guess the mental-meltdown is coming from the fact that the default website on the mail server is already directed to /exchange, and I am under the obviously wrong notion that ISA would allow the internal server to redirect without penalty...
Thanks for all your great efforts on this site! Truly a godsend for those of us just getting into this app!
Andy
_____________________________
There is never enough time to write code correctly; there is always enough time for a hotfix...
|
|
|
|
|
RE: OWA Publishing issue (Yet again) - 19.Aug.2008 8:21:13 AM
|
|
|
tshinder
Posts: 47490
Joined: 10.Jan.2001
From: Texas
Status: offline
|
Hi Andy,
I know the article is somewhere on this site. The title was something like Publishing OWA and Outlook Anywhere with a single Web Listener.
The key is to create a deny rule for owa.domain.com and then in that deny rule, configure a redirect to owa.domain.com/owa
HTH,
Tom
_____________________________
Thomas W Shinder, M.D.
Sr. Consultant/Technical Writer
Prowess Consulting http://www.prowessconsulting.com/
Blog: http://blogs.isaserver.org/shinder/
GET THE NEW ISA 2006 Book!: http://tinyurl.com/2gpoo8
|
|
|
|
 New Messages |
 No New Messages |
 Hot Topic w/ New Messages |
 Hot Topic w/o New Messages |
 Locked w/ New Messages |
 Locked w/o New Messages |
|
 Post New Thread
Reply to Message
Post New Poll
Submit Vote
Delete My Own Post
Delete My Own Thread
Rate Posts |
|
Printable Version
) Which points out the fact that the user is either a hacking thief or a dolt. From there the page shows a clickable link to the correct page rather than redirecting. I downloaded Jim Harrisons' stuff as you had suggested in other posts (Very nice little scripts) but decided not to redirect for one simple reason: 
