Issue: Externally, users get Windows authentication prompts when trying to use Outlook 2003 in RPC over HTTPS mode. OWA works on this listener.
I've read every RPC over HTTPS tutorial on this site. Still no worky.
Configuration and other info: Exchange 2003 SP2 - FE and BE set to do RPC over HTTP ISA 2006 with FP1 Outlook 2003 and 2007 clients get the same prompts
ISA set up as follows: Listner - - SSL - Verisign cert assigned; using the OWA cert - No forms (all grayed out in the Forms tab) - Authentication set to HTTP Auth, basic, and LDAP ***I know LDAP works because our Active Sync listener is using the same LDAP settings and groups in production***
Access Rule: - Allow is set - From Anywhere to OWA site (remember, OWA works). Forward header checked. Requests from ISA selected - OWA Listener selected - External OWA site used on the Public Name tab - /exchange/* and /rpc/* set in the path - Application Settings all grayed out - nothing in use. - Authentication Delegation set to Basic - Bridging set to redirect over 443 - Users has the same LDAP group assigned to it as the EAS users - remember, EAS works - No schedule set, i.e. it is wide open
Outlook 2003/2007 clients set as follows: - On the Security tab, Kerberos/NTLM Password Auth is selected - On the Connection tab, the checkbox for "Connect to my Exchange Mailbox using HTTP" is checked - Under Exchange Proxy Settings, I have owa.mycompany.com entered, checked the "Mutually authenticate" checkbox, and msstd:owa.mycompany.com in the Principal name box and Basic Auth isselected on the dropdown
Again, external users get prompted repeatedly. If I test this internally and check the connection status, it says I am using TCP/IP and not HTTP.