It would be nice if we could have a simliar fix that could be applied to the ISA Server's Incoming Web Requests listener. Although another fix might be to configure a redirect on the server? 279681 - How to Force SSL Encryption for an Outlook Web Access 2000 Client: http://support.microsoft.com/default.aspx?scid=kb%3ben-us%3b279681