Welcome to ISAserver.org
Forums |
Register |
Login |
My Profile |
Inbox |
RSS 
|
My Subscription |
My Forums |
Address Book |
Member List |
Search |
FAQ |
Ticket List |
Log Out
RE: Discussion of OWA FBA Publishing article
|
Users viewing this topic:
none
|
Logged in as: Guest
|
Login  | |
|
RE: Discussion of OWA FBA Publishing article - 15.Jun.2006 5:24:30 PM
|
|
|
leep
Posts: 10
Joined: 15.Jun.2006
Status: offline
|
I have set up OWA following exact intructions from the document.
When I try to access OWA i get the Certificate screen which i click ok. Then my FBA screen appears where i enter my username and password in the correct format. Then i get asked whether i want to display the non-secure items, i click yes. I get the blue line separating the two OWA panes but both panes display the error "The page cannot be displayed. Cannot find Server or DNS error"
Any ideas?
Exchange 2003 SP2 on Windows 2003 SP1
ISA 2004 SP1 on Windows 2003 SP1 (in DMZ off SonicWALL Firewall)
Update:
I turned off Friendly IE messages and now i get the error:
404 not found
The requested url /exchange/user/inbox was not found on this server
??????
< Message edited by leep -- 16.Jun.2006 11:52:23 AM >
|
|
|
|
|
RE: Discussion of OWA FBA Publishing article - 13.Jul.2006 8:23:44 PM
|
|
|
holistic
Posts: 2
Joined: 13.Jul.2006
Status: offline
|
I arrived up till the point where I see my OWA. All looks OK BUT when I goto https://mail.mydomain.com/exchange first I get "
Cannot find server or DNS Error
Internet Explorer
Then I press refresh and the browser stays on a white backgound trying to access the site forever. I do not get to the site or the notice for certificate or whatever.
_____________________________
Evan!
|
|
|
|
|
RE: Discussion of OWA FBA Publishing article - 19.Jul.2006 4:05:09 PM
|
|
|
BillBrosius
Posts: 7
Joined: 19.Jul.2006
Status: offline
|
Tom,
I used the following article to set up my ISA 2004/Exchange relationship and everthing works great. I have a single NIC ISA server that is not part of the domain. I would be willing to change that though. This is the article that I am referring to:
http://www.isaserver.org/tutorials/2004pubowamobile.html
In this article, you assume that the administrator is generating the SSL certificates. I set it up this way and it has been working great for several months now. However, we are getting more users who want to access the OMA or use ActiveSync via their mobile devices. Most mobile devices like SmartPhones do not trust the "self-issued" certificates. The only alternative is to sign up for a VeriSign or similar type certificate that is inherently trusted by such devices.
The question is, how do you set up the steps in the article when you have a SSL certificate from a third party? I am not sure how I would generate the certificate for the Localhost. Do I just issue my own certificate for the localhost and use the VeriSign certificate for the other listeners? Does this cause a conflict between certificates?
My only other thought is to just use basic authentication on all listeners and be done with it. I really don't want to do that though.
Any thoughts?
Thanks.
Bill
|
|
|
|
|
RE: Discussion of OWA FBA Publishing article - 15.Mar.2007 1:44:36 PM
|
|
|
clynn
Posts: 101
Joined: 8.Feb.2001
From: Farmington Hills, MI
Status: offline
|
After following the article, I am having a problem.
I can access https://owa.DOMAIN.com/exchange fine from the ISA Server.
When I try from the outside, I get:
Technical Information (for support personnel)
Error Code: 500 Internal Server Error. The certificate chain was issued by an authority that is not trusted. (-2146893019)
Any Ideas?
|
|
|
|
|
RE: Discussion of OWA FBA Publishing article - 20.Mar.2007 12:22:56 AM
|
|
|
weinstein_josh
Posts: 90
Joined: 15.Nov.2002
From: Toledo
Status: offline
|
quote:
ORIGINAL: clynn
After following the article, I am having a problem.
I can access https://owa.DOMAIN.com/exchange fine from the ISA Server.
When I try from the outside, I get:
Technical Information (for support personnel)
Error Code: 500 Internal Server Error. The certificate chain was issued by an authority that is not trusted. (-2146893019)
Any Ideas?
Clynn,
Did you or anyone else have an answer to this error? I am getting the exact issue when completing the Step-by-Step article. I can access the OWA site from ISA and internally.
|
|
|
|
|
RE: Discussion of OWA FBA Publishing article - 20.Mar.2007 1:35:27 PM
|
|
|
clynn
Posts: 101
Joined: 8.Feb.2001
From: Farmington Hills, MI
Status: offline
|
Nope, still a problem for me.
|
|
|
|
|
RE: Discussion of OWA FBA Publishing article - 20.Mar.2007 1:39:57 PM
|
|
|
weinstein_josh
Posts: 90
Joined: 15.Nov.2002
From: Toledo
Status: offline
|
I was able to get this working last night, not sure if what I did is correct or not but here is what I did.
1) I opened the certificate server via the web from the ISA machine.
2) Click the Download a CA certificate, certificate chain... On the next screen I had two CA certificates listed (one current and one previous)
3) I clicked the install this CA certificate chain link
This installed both CA certificates (3 actually) into my ISA server trusted certificates and then my OWA began working.
|
|
|
|
|
RE: Discussion of OWA FBA Publishing article - 21.Mar.2007 4:31:50 PM
|
|
|
FrustratedTech
Posts: 4
Joined: 23.Jan.2007
Status: offline
|
I'm having a bit of an issue. I have my ISA server setup and I imported the cert from the Exchange Server. I have my rules in place and can actually log in from the ISA server into my OWA. When I try it from a different computerit brings up the login page I put in my username and password and it says that it isn't correct. I looked at the logs on the ISA server, and it shows my client user name as anonymous trying to get the regular site of my Exchange server instead of the SSL site, and it doesn't have any log of the OWA publishing site being used. I don't understand why the listener and rule isn't working. I don't think it's a cert problem because I don't have any issues about it when I log in at the ISA computer. The set up is a single NIC and it is in a DMZ on our PIX. I've checked the PIX and everything looks good. I assume if it didn't the ISA server wouldn't be able to get to the Exchange server at all. I have FBA turned on and it's supposed to use the cert I imported. I don't know what else to do. I've looked at about every site telling you how to set this up. I even ran into microsoft's official site.
|
|
|
|
RE: Discussion of OWA FBA Publishing article - 14.May2007 10:58:53 AM
|
|
|
oceans14
Posts: 5
Joined: 14.May2007
Status: offline
|
Hi please help, I have followed your Step-by-Step: Publishing a Single Exchange 2003 OWA with ISA 2004 Firewall Forms Based Authentication paper in configuring my Exchange Box for OWA. My present configuration is One server installed with windows 2003 standard edition, ISA 2004 and Exchange 2003 server all on one box. I installed CA okay. Problem 1: First when I go to open Certificate Authority console and navigate to the Pending Requests tree, on the right panel there is no certificate request waiting to be approved. But instead when I check the Issued Certificate container I find that the issued certificate is there, what does this mean? Problem 2: When I wanted to Download Certificate after I go to http://servername/certsrv using DER Encoded. I save the file as certnew.cer to desktop. Now when I go to Directory Security tab in the Default Web Site, click Server Certificate....and using the wizard to process pending request, on the IIS Certificate Wizard: Process a Pending Request and I put in the path were I serverd my certnew.cer file and click next it retains this message: "Selected Certificate was already installed to another server. Please choose another response file." Please can someone help me...
|
|
|
|
|
Configuring Exchange Server 2003 behind ISA 2004 (not f... - 27.Nov.2007 6:54:26 AM
|
|
|
AbdulBasit
Posts: 1
Joined: 27.Nov.2007
Status: offline
|
Dear all,
I have just configured my organization Exchange Server 2003 behind ISA Server 2004, everything is going well but users outside the organization (from remote location, internet) can not access their email accounts, because ISA 2004 is preventing the users access to their email boxes (accounts), kindly help me in this regard, i will be very thankful to you.
Abdul Basit
|
|
|
|
|
RE: Discussion of OWA FBA Publishing article - 21.May2008 12:54:28 AM
|
|
|
mlg
Posts: 8
Joined: 6.Apr.2008
Status: offline
|
Shouldnīt you add the name of the virtual directory to the FQDN as well ... at least if you followed Mr Zamirīs instructions to the letter?
Like this https://fqdn/exchange
|
|
|
|
|
RE: Discussion of OWA FBA Publishing article - 28.May2008 11:24:55 AM
|
|
|
mlg
Posts: 8
Joined: 6.Apr.2008
Status: offline
|
I got my ssl briged owa working with isa 2006 and exchange 2003 today! It felt great. Thanks to all of you guys at ISAsever.org for all the tips and tricks that you have been sharing.
I have only one minor thing that annoys me just a little. Is there anyone who can help me out ... I would appreciate it very much
ISA 2006 is domain member
external and internal domains are intra.huligan.com (both are the same but point to different addresses)
Exchange 2003 has 172.16.0.5 ..... this ip is bound to
owa.intra.huligan.com and
huvudsrv.intra.huligan.com
Externally I connect to https://owa.intra.huligan.com/exchange and I can log on
On the ISA router I can log on with the same address .. no problem ,.. but I get a Windows log on screen when I want to log on .... instead of the form .. when I supply my credentials I can log on
If I try to log on on the DC (huvudsrv.intra.huligan.com) I get an access denied
if I use https://owa.intra.huligan.com/exchange as the address
but, if I use https://huvudsrv.intra.huligan.com/exchange log on is successful
Is there any way in which I can log on using https://owa.intra.huligan.com/exchange
as the address internally? .. it should work I think, since both
owa.intra.huligan.com
huvudsrv.intra.huligan.com
have resource records in interal dns
plz, help
Mikael Ljung
|
|
|
|
 New Messages |
 No New Messages |
 Hot Topic w/ New Messages |
 Hot Topic w/o New Messages |
 Locked w/ New Messages |
 Locked w/o New Messages |
|
 Post New Thread
Reply to Message
Post New Poll
Submit Vote
Delete My Own Post
Delete My Own Thread
Rate Posts |
|
Printable Version
. 