[ExchangeList] Re: OWA 2003 on Win2k3 and force SSL with redirection
- From: "Carl Houseman" <c.houseman@xxxxxxxxx>
- To: <exchangelist@xxxxxxxxxxxxx>
- Date: Mon, 17 Jul 2006 19:01:38 -0400
Match #1 of that Google is not specific to OWA or Exchange and should work
for the entire site, as long as you change all directories to require
encryption and set the 403.4 error response page correctly.
Your default web site is the one which must be special, so that it redirects
to both https and /exchange at the same time. And take care when making
changes there that other sites under the default site aren't changed.
Carl
_____
From: exchangelist-bounce@xxxxxxxxxxxxx
[mailto:exchangelist-bounce@xxxxxxxxxxxxx] On Behalf Of Thompson, Elizabeth
Sent: Monday, July 17, 2006 6:36 PM
To: exchangelist@xxxxxxxxxxxxx
Subject: RE: [ExchangeList] Re: OWA 2003 on Win2k3 and force SSL with
redirection
?
Thanks for the goggle. Unfortunately a lot of those sites are one's I have
hit and say the same thing and say it for both IIS 5 and IIS 6 - Use an asp
script as a custom error and point the application pool on the default web
site to exchange. They also say that any directories other then exchange
have to be done individually. (MS article 839357) The script seems to only
cover OWA but leaves OMA in clear text mode. It also doesn't seem to force
encryption when user's use the change password in OWA.
Since we didn't have to use a script in IIS 5, are the re-direct to a URL is
still in IIS 6, I am unsure why it doesn't work.
Maybe I am miss understanding who the scripts work, since I don't have a
strong knowledge of ASP code. Can you assist in clarifying my understanding?
Thanks for your time.
Liz
_____
From: exchangelist-bounce@xxxxxxxxxxxxx on behalf of Carl Houseman
Sent: Mon 7/17/2006 5:13 PM
To: exchangelist@xxxxxxxxxxxxx
Subject: [ExchangeList] Re: OWA 2003 on Win2k3 and force SSL with
redirection
http://www.google.com/search?q=redirect+http+https+iis
Carl
_____
From: exchangelist-bounce@xxxxxxxxxxxxx
[mailto:exchangelist-bounce@xxxxxxxxxxxxx] On Behalf Of Thompson, Elizabeth
Sent: Monday, July 17, 2006 5:07 PM
To: exchangelist@xxxxxxxxxxxxx
Subject: [ExchangeList] OWA 2003 on Win2k3 and force SSL with redirection
Greetings all,
We are currently running Exchange 2003 on Windows 2000 SP 4 servers and are
testing migrating to windows 2003/exchange 2003 setup.
In windows 2000/exchange 2003 SP 1 - We have a FE/BE arrangement with the
following FE server setup.
DNS set to mail.ccbcmd.edu
IIS 5 - default web site settings
Set to redirect to a url - https://mail.ccbcmd.edu/exchange
set it as a perment redirect and a folder under this one.
Aynomyous and basic authenication is checked and domain name is entered
force SSL is checked at the default web site.
Exchange - form based authenication is checked and working
When a user types mail.ccbcmd.edu they get re-directed to
https://mail.ccbcmd.edu <https://mail.ccbcmd.edu/> . they are not required
to type the https.
In windows 2003/exchange 2003 SP 1
DNS set to mail.ccbcmd.edu
IIS 6 - default web site settings
Set to redirect to a url - https://mail.ccbcmd.edu/exchange
set it as a perment redirect and a folder under this one.
Aynomyous and basic authenication is checked and domain name is entered
force SSL is checked at the default web site.
Exchange - form based authenication is checked and working
When a user types mail.ccbcmd.edu they get a notice that they must type
https.
I would like help on find out how to re-directed to https://mail.ccbcmd.edu
<https://mail.ccbcmd.edu/> so that they are not required to type the https
like we have in our current IIS 5 setup.. We need to have force SSL on the
entire web site not just exchweb directory for other security reasons.
thanks for your assistance,
Elizabeth Thompson
Other related posts:
