locked
OWA from external " a server configuration change is temporarily preventing access to your account" RRS feed

  • Question

  • We have 2 exchange servers 1 legacy 2007 with hub transport, mailbox and internal CAS, one 2010 with the external pointing CAS, mailbox and hub transport.

    Problem occurs when users on legacy 2007 try to access OWA from outside. Redirect from https://mail.contoso.com/owa to External URL of "OWA default website"- https://legacy.contoso.com/owa is working, error is seen after 1st logon page is complete. Problem only affects users homed on 2007 server. 

    At a loss after treble checking all security, problem persists with Fba, windows and basic.

    Tuesday, March 6, 2012 4:10 PM

Answers

  • Hi,

    Make sure that you have set ExternalURL in Exchange 2010

    Set-OWAVirtualDirectory <CAS2010>\OWA* -ExternalURL https://mail.contoso.com/OWA


    Regards from www.windowsadmin.info | www.blog.windowsadmin.info

    • Proposed as answer by Sophia Xu Thursday, March 8, 2012 2:45 AM
    • Marked as answer by Sophia Xu Monday, March 19, 2012 1:44 AM
    Tuesday, March 6, 2012 5:55 PM

All replies

  • Hi,

    Make sure that you have set ExternalURL in Exchange 2010

    Set-OWAVirtualDirectory <CAS2010>\OWA* -ExternalURL https://mail.contoso.com/OWA


    Regards from www.windowsadmin.info | www.blog.windowsadmin.info

    • Proposed as answer by Sophia Xu Thursday, March 8, 2012 2:45 AM
    • Marked as answer by Sophia Xu Monday, March 19, 2012 1:44 AM
    Tuesday, March 6, 2012 5:55 PM
  • Hi Phil,

    I've set those up as per the guides:

    2007  CAS

    Internal URL https://server.contoso.com/owa

    External URL https://legacy.contoso.com/owa

    2010  CAS

    Internal URL https://server.contoso.com/owa

    External URL https:// mail.contoso.com/owa

    The redirection part seems to work i.e. the user is required to enter username/password when hitting mail.contoso.com and then they're requested to do it again immediately. When that log on fails the url that remains is the legacy external url on the correct 2007 box.

    Thanks

    Wednesday, March 7, 2012 8:49 AM
  • See the dual authentication after enabling 'Form based authentication'


    Regards from www.windowsadmin.info | www.blog.windowsadmin.info

    Thursday, March 8, 2012 5:04 AM