Welcome to ISAserver.org
Forums |
Register |
Login |
My Profile |
Inbox |
RSS 
|
My Subscription |
My Forums |
Address Book |
Member List |
Search |
FAQ |
Ticket List |
Log Out
Please help with https access
|
Users viewing this topic:
none
|
Logged in as: Guest
|
Login  | |
|
Please help with https access - 7.Nov.2006 3:05:17 PM
|
|
|
x102020
Posts: 53
Joined: 23.Oct.2006
Status: offline
|
Hey all,
alright, I had to revert back to http access until I can get this https situation sorted out.
Here is the problem:
I have followed the instructions found here: http://www.isaserver.org/tutorials/Using-2006-ISA-Firewall-RC-Publish-OWA-Sites-Part1.html
From the internal side of things when SSL was enabled (on both servers), things were working fine, users could access webmail (internally) via https, the login form would come up, login, and there's there email.
Now external email is really causing a problem here.
When I goto https://mail.gelcellcapsules.com/exchange, I get the ISA OWA login screen, if I try putting in a wrong password or username, it comes back with the right things, so I know it's authenticating fine. Now when I enter the correct login info, my firefox gives me a nice error about 'can not redirect'. No matter what I try, I can't get the secure OWA working correctly.
As per our internal setup:
1) sonicwall router/firewall (which IS allowing http, https, smtp, etc) for both incoming and outgoing traffic)
2) ISA (setup as a back-to-back setup) - smtp relay is setup and working fine.
3) Exchange server (on the internal network).
our internal mail name is: mail.gelcellcapsules.com
our external mail name is: mail.gelcellcapsules.com
I've looked through event logs, ISA logs, and can't find a particular error as to why it's giving me this error. I'm stumped.
Where do I start? what do I do?
erp,
10
|
|
|
|
|
RE: Please help with https access - 9.Nov.2006 3:39:18 AM
|
|
|
hunglikethor
Posts: 66
Joined: 12.Oct.2006
Status: offline
|
I have the same problem. I get a web site that says "ISA Server 2006" when I type in the external address from an external client. Typing in wrong user password with user name brings back the same page with an error, letting my know that ISA server has tried to autheticate the user and it failed due to wrong password. When I type in the right password, I get the 403 error after a few seconds. I was running wireshark pacaket analyzer on both the ISA Server Internal NIC and the Exchange Server NIC and NO packets were exchanged between the two machine except ICMP pings which are setup to validate connectivity only.
Only difference between my set up and the one outlined at http://www.isaserver.org/tutorials/ISA-Firewall-Publishing-OWA-RPC-HTTP-Single-IP-Address-Part3.html
is that my ISA server 2006 is part of my AD Domain, and has a DNS Server installed with an AD stub zone for internal name resolution. My ISA is not an edge firewall, so nothing is exposed externally.
If you get any farther let me know. I am stumped.
Edward Ray
|
|
|
|
|
RE: Please help with https access - 10.Nov.2006 4:35:00 PM
|
|
|
hunglikethor
Posts: 66
Joined: 12.Oct.2006
Status: offline
|
Adding "/exchange" to the end of my URL fixed the problem. Created a Link Translation so that users would only have to type in "https://webmail.netsecdesign.com"
Edward Ray
|
|
|
|
 New Messages |
 No New Messages |
 Hot Topic w/ New Messages |
 Hot Topic w/o New Messages |
 Locked w/ New Messages |
 Locked w/o New Messages |
|
 Post New Thread
Reply to Message
Post New Poll
Submit Vote
Delete My Own Post
Delete My Own Thread
Rate Posts |
|
Printable Version
