My system: Windows Server Enterprise 2003 SP2, 32 bit, ISA 2006 Enterprise SP1, Exchange 2003 SP2.
I have many problems with ISA when I publish OWA. This is my topo: AD ( DHCP, DNS, WINS ), Addition AD ( Exchange installed on ), ISA is member's domain.
My domain local is abc.local and my domain I registered with IPS is xyz.com. I install Enterprise CA on Exchange, create new Certificate on Default Website ( IIS ) on Exchange. After that, install this one on ISA.
My Certificate: i put the common name is mail.abc.local My Default Website on IIS ( Exchange ) I set: Authenticate integrated Windows authentication and inheritance for all sub on site On Exchange system manager I set: Default Exchange Server as FBA
Publishing on ISA:
- Publish DNS: Rule DNS Server from AD to External - Create port 443: The Authentication I choose No authentication. And the last, Web listener I choose External - Publish OWA use port 443 SSL: The name internal I put: mail.abc.local + Exchange-server-name.local, and publish name I put: mail.xyz.com. Option Authentication Delegation I choose: No delegation, but client may authenticate directly.
You only have a single exchange server instaled on your AD, right?
on Your IIS:
-certificate must be installed -require SSL channel & 128 bit SSL encryption should be enabled -uncheck Integrated Windows authentication -check the box in basic authentication -you need to export the certificate from IIS to *.pfx for the ISA server. try out this link (http://netoverme.wordpress.com/category/outlook-web-access/)
MCSE+Security, MCSA+Security, ISA Server 2004 & 2006