Hi Beth, On the Users tab, enable the forward basic authentication checkbox and see what happens. HTH, Tom Thomas W Shinder, M.D. Site: www.isaserver.org Blog: http://spaces.msn.com/members/drisa/ Book: http://tinyurl.com/3xqb7 MVP -- ISA Firewalls **Who is John Galt?** > -----Original Message----- > From: Beth Whyle [mailto:bethwhyle@xxxxxxxxx] > Sent: Thursday, October 27, 2005 3:20 PM > To: [ISAserver.org Discussion List] > Subject: [isalist] ISA Configuration for OWA > > http://www.ISAserver.org > > I've spent a few days going in circles over the OWA > authentication methods on the ISA server. > Background information: > > Set up the Certificate for HTTPS(also > exported/imported for the internal front end Exchange > server) > Modified the host file on the ISA Server to ensure the > URL was pointing to the address of the internal front > end Exchange server. > > Forms-based authentication is turned off on the front > end server. > > I followed the instructions for configuring all the > pieces and everything works fine if the authentication > within the OWA Listener on the ISA server is set to > Basic. However, once I change the authentcation to > FBA and check require all users to authenticate it no > longer works. The OWA LogOn screen served by the ISA > server comes up but when you try to log in it just > brings you back to the logon screen. > > I reviewed the firewall log and when authentication is > set to basic I can see the traffic going to the front > end server(internal) for authentication. > > When auth is set to FBA I only see traffic destined > for the ISA Servers external IP address. Strange? > What mechanism controls the redirect to the front end > server when FBA is selected? > > > I have silly question that may or may not be related. > When setting up the ISA Server is it necessary to have > IIS Running? Nothing but OWA is being served from > this server. Obviously it does not bcs I have it > stopped but I just want to clarify. When I had it > enabled, it was accepting the https requests to > process itself when in reality I think the OWA HTTPS > Listener needs to handle the request. Is this sound > logical or am I way off base? > > Any feedback would be appreciated. > > > > > __________________________________ > Yahoo! Mail - PC Magazine Editors' Choice 2005 > http://mail.yahoo.com > > ------------------------------------------------------ > List Archives: http://www.webelists.com/cgi/lyris.pl?enter=isalist > ISA Server Newsletter: http://www.isaserver.org/pages/newsletter.asp > ISA Server FAQ: http://www.isaserver.org/pages/larticle.asp?type=FAQ > ------------------------------------------------------ > Visit TechGenix.com for more information about our other sites: > http://www.techgenix.com > ------------------------------------------------------ > You are currently subscribed to this ISAserver.org Discussion > List as: tshinder@xxxxxxxxxxxxxxxxxx > To unsubscribe visit > http://www.webelists.com/cgi/lyris.pl?enter=isalist > Report abuse to listadmin@xxxxxxxxxxxxx > >