|
Home > Archive > IIS Server Security > February 2007 > Integrated Authentication & OWA
You are viewing an archived Text-only version of the thread.
To view this thread in it's original format and/or if you want to reply to
this thread please [click here]
| Author |
Integrated Authentication & OWA
|
|
| Paul Gerry 2007-02-10, 7:22 am |
| Hi,
We have just deployed a new Exchange 2003 server on a Windows 2003 Standard
SP1 box at work and are experiencing problems with OWA. By default OWA uses
integrated authentication which works fine on all of our other domains but
on this fresh install in a new domain isn't working. We are getting the
standard enter correct details 3 times then it comes up with access denied.
We have been working on solutions for the past 2 days but with no joy.
I have just un-installed Exchange and IIS and then re-installed IIS and can
get the default site to work correctly with integrated authentication. I
then changed the default site back to anonymous access and proceeded to
install exchange again. As soon as it was installed before I tried
configuring anything else I checked OWA and guess what.... exactly the same
on a fresh install.
I then turned on full auditing of successes and failures and I'm getting 553
and 537 errors in the security event log. For both events MS Help claims
there is no additional information about the error.
The description of the errors do mention kerberos but without any helpful
details. I am not sure whether the problem lies with IIS, Exchange or even
AD. The rest of Exchange is working fine through Outlook so do not believe
it to be a problem specifice with exchange.
Has anybody experienced this before or have any ideas on a resolution, any
help greatly appreciated.
Paul
| |
| Marcelo Villalón 2007-02-12, 7:28 pm |
| Check this
http://www.eventid.net/display.asp?...ecurity&phase=1
Marcelo V., CISSP, Security+
"Paul Gerry" <pg@tpcl.com> wrote in message
news:IR6zh.8931$9S5.3814@text.news.blueyonder.co.uk...
> Hi,
>
> We have just deployed a new Exchange 2003 server on a Windows 2003
Standard
> SP1 box at work and are experiencing problems with OWA. By default OWA
uses
> integrated authentication which works fine on all of our other domains but
> on this fresh install in a new domain isn't working. We are getting the
> standard enter correct details 3 times then it comes up with access
denied.
> We have been working on solutions for the past 2 days but with no joy.
>
> I have just un-installed Exchange and IIS and then re-installed IIS and
can
> get the default site to work correctly with integrated authentication. I
> then changed the default site back to anonymous access and proceeded to
> install exchange again. As soon as it was installed before I tried
> configuring anything else I checked OWA and guess what.... exactly the
same
> on a fresh install.
>
> I then turned on full auditing of successes and failures and I'm getting
553
> and 537 errors in the security event log. For both events MS Help claims
> there is no additional information about the error.
>
> The description of the errors do mention kerberos but without any helpful
> details. I am not sure whether the problem lies with IIS, Exchange or even
> AD. The rest of Exchange is working fine through Outlook so do not believe
> it to be a problem specifice with exchange.
>
> Has anybody experienced this before or have any ideas on a resolution, any
> help greatly appreciated.
>
> Paul
>
>
|
|
|
|
|