Hi Mike, I am not sure how this will work, but you may try with a test user account. Edit the User property, and in the Account properties, where it says User logon name, use the user's email ID as the user name, and select the correct UPN suffix. Leave the pre-windows 2000 logon name as default, whatever standard you use. Then try to logon both ways, that is using the "email id" as your UPN ID, and use the pre-windows 2000 format and use the NetBIOS domain name and the pre-windows 2000 login name. Check if this works both ways. FBA really does not make any changes to authentication. However, I prefer FBA as is uses SSL, and provides more presentable front end look to the OWA in general, rather than a plain logon box. Regards, Raj -----Original Message----- From: A. M. Salim [mailto:msalim@xxxxxxxxxxxx] Sent: Wednesday, September 08, 2004 11:59 AM To: [ExchangeList] Subject: [exchangelist] RE: Logging into OWA with UPN email address and password http://www.MSExchange.org/ Hello Raj, Excellent information, thanks! a) You are correct about the LAN-ID not necessarily matching the email address. I have a UPN set up so the domain name will match their email addresses's domain name, and they can use the LAN-ID. Is there a way to also use the actual email address instead of the LAN-ID? That way, neither the AD Domain name nor the LAN-ID is exposed when using OWA. b) I am not sure if forms based authentication is needed - would it be required here? Any advice on FBA relative to OWA would be appreciated. best regards Mike > When you mention you want the users to logon using the email address, I > assume you mean the UPN of the user ID. The UPN is typically > LANID@xxxxxxxxxxxxx, where LANID is the user's LAN ID, and the > ad-domain.xxx is the Active Directory domain name, not necessarily your > email domain name. In most cases this format will match the user's SMTP > email ID. However, in some cases, the User LAN ID will not be the same > as the SMTP ID. If you configure your SMTP addresses to use > firstname.lastname@xxxxxxxxxxxxxx, the LANID will be different. Also, in > some cases, the AD domain name is different from the domain name used > for email. In this case you can always add an additional UPN suffix to > your domain to match the email domain name. Also note that the NetBios > domain name is not the same as your AD DNS domain name, for example, > when you specify the domain name in the logon box, you can specify > DOMAINX as your domain name. But when you use the UPN format you may > have to use user@xxxxxxxxxxxx, where DOMAINX is the Netbios name, and > addomain.com is the DNS name. However, the user ID part in the UPN has > to be the user's LAN ID. So effectively, the UPN formatted logon looks > like your email ID, and in most cases is your correct email ID, but not > always. Run IPCONFIG /ALL, this will tell you what is the dns domain > name fro your domain. Also, have you enabled forms based authentication > ? > > > Regards, > > Raj > > > -----Original Message----- > From: A. M. Salim [mailto:msalim@xxxxxxxxxxxx] > Sent: Wednesday, September 08, 2004 10:57 AM > To: [ExchangeList] > Subject: [exchangelist] RE: Logging into OWA with UPN email address and > password > > http://www.MSExchange.org/ > > Hi Raj and Mike, > > > My reply applies to OWA login not Outlook 2003. This is a problem I > had > > a few days ago, and solved it by applying SP2 for XP. When you logon > to > > OWA, you have to use the format domain\username to login, and > > user@xxxxxxxxxx will not work. This is the problem I had, and fixed it > > with SP2. Even if you specify \ as the default domain to authenticate > in > > IIS, that does not enable UPN authentication without the patch or SP2. > > I am not sure if the above applies to me, as this behavior also occurs > on > Windows 2000 Workstations. I am checking KB 830827 to see if it helps, > thanks Mike! > > best regards > Mike. > > > ------------------------------------------------------ > List Archives: http://www.webelists.com/cgi/lyris.pl?enter=exchangelist > Exchange Newsletters: http://www.msexchange.org/pages/newsletter.asp > Exchange FAQ: http://www.msexchange.org/pages/larticle.asp?type=FAQ > ------------------------------------------------------ > Other Internet Software Marketing Sites: > World of Windows Networking: http://www.windowsnetworking.com > Leading Network Software Directory: http://www.serverfiles.com > No.1 ISA Server Resource Site: http://www.isaserver.org > Windows Security Resource Site: http://www.windowsecurity.com/ > Network Security Library: http://www.secinf.net/ > Windows 2000/NT Fax Solutions: http://www.ntfaxfaq.com > ------------------------------------------------------ > You are currently subscribed to this MSEXchange.org Discussion List as: > psraj@xxxxxxxxxxxx > To unsubscribe visit > http://www.webelists.com/cgi/lyris.pl?enter=exchangelist > Report abuse to listadmin@xxxxxxxxxxxxxx > > > > ------------------------------------------------------ > List Archives: http://www.webelists.com/cgi/lyris.pl?enter=exchangelist > Exchange Newsletters: http://www.msexchange.org/pages/newsletter.asp > Exchange FAQ: http://www.msexchange.org/pages/larticle.asp?type=FAQ > ------------------------------------------------------ > Other Internet Software Marketing Sites: > World of Windows Networking: http://www.windowsnetworking.com > Leading Network Software Directory: http://www.serverfiles.com > No.1 ISA Server Resource Site: http://www.isaserver.org > Windows Security Resource Site: http://www.windowsecurity.com/ > Network Security Library: http://www.secinf.net/ > Windows 2000/NT Fax Solutions: http://www.ntfaxfaq.com > ------------------------------------------------------ > You are currently subscribed to this MSEXchange.org Discussion List as: msalim@xxxxxxxxxxxx > To unsubscribe visit http://www.webelists.com/cgi/lyris.pl?enter=exchangelist > Report abuse to listadmin@xxxxxxxxxxxxxx > ------------------------------------------------------ List Archives: http://www.webelists.com/cgi/lyris.pl?enter=exchangelist Exchange Newsletters: http://www.msexchange.org/pages/newsletter.asp Exchange FAQ: http://www.msexchange.org/pages/larticle.asp?type=FAQ ------------------------------------------------------ Other Internet Software Marketing Sites: World of Windows Networking: http://www.windowsnetworking.com Leading Network Software Directory: http://www.serverfiles.com No.1 ISA Server Resource Site: http://www.isaserver.org Windows Security Resource Site: http://www.windowsecurity.com/ Network Security Library: http://www.secinf.net/ Windows 2000/NT Fax Solutions: http://www.ntfaxfaq.com ------------------------------------------------------ You are currently subscribed to this MSEXchange.org Discussion List as: psraj@xxxxxxxxxxxx To unsubscribe visit http://www.webelists.com/cgi/lyris.pl?enter=exchangelist Report abuse to listadmin@xxxxxxxxxxxxxx