Exchange Server Forums
Forums |
Register |
Login |
My Profile |
Inbox |
RSS 
|
My Subscription |
My Forums |
Address Book |
Member List |
Search |
FAQ |
Ticket List |
Log Out
How to secure Exchange
|
Users viewing this topic:
none
|
Logged in as: Guest
|
Login  | |
|
 Limited time MSExchange.org offer! -- 1.Sep.2008 1:00:00 PM
|
|
TechGenix and SolarWinds have partnered to provide free copies of SolarWinds Exchange Monitor to all visitors who join the MSExchange.org Forums. SolarWinds Exchange Monitor is a handy desktop dashboard that continuously monitors Microsoft Exchange to deliver real-time insight into Exchange services, mail queue sizes, and host server health. Learn more about Exchange Monitor and the free offer!
|
How to secure Exchange - 23.Aug.2007 7:01:27 AM
|
|
|
goharkhan
Posts: 81
Joined: 5.Jul.2007
Status: offline
|
Dear friends,
Could you please let me know how can I make my exchange server more secure.I have single exchange server behind firewall.I can send recieve email and access it outside the LAN fine.Now i want to make it secure like instead of http i want to switch to https and any other security measure that this forum recommends.I have netscreen firewall and about 300 users.
Thanks in advance.
|
|
|
|
|
RE: How to secure Exchange - 26.Aug.2007 12:36:01 AM
|
|
|
warrenlee
Posts: 85
Joined: 24.Aug.2007
From: Hong Kong
Status: offline
|
You can deploy ISA 2006 application firewall with SSL to protect Exchange. It supports application filtering, URL blocking features etc. Such as: it allows external users accessing Exchange virtual directories only.
Publishing Exchange Server 2003 with ISA Server 2006:-
http://www.microsoft.com/technet/isa/2006/deployment/exchange2003.mspx
< Message edited by warrenlee -- 27.Aug.2007 9:26:54 AM >
_____________________________
Warren Lee (MS MVP, MCTS and MCSE, VMware VCP)
Hong Kong
...... Why the life is colorful? Because we can't predict future.
|
|
|
|
|
RE: How to secure Exchange - 27.Aug.2007 7:38:25 AM
|
|
|
goharkhan
Posts: 81
Joined: 5.Jul.2007
Status: offline
|
Hi, Thanks for your answer i will try to achieve this and then let u know.I have some more questions.
1.When i create new user in exchange i give an easy password like 123456789 and then check the box ""user must change password on next login"".But when user try to access exchange it ask for password again and again and dont offer to change the password.but i uncheck the box ""user must change password on next login"" then it works fine.So can i enble user to change its defualt password which is given at creation??
2.IN IIS under default website what is the directory ""ExAdmin"" for?? when i right click on it and then browse it say the page could not be display.What i think it may be for creating user accounts through IE, if so how can i make it working??
Thanks
|
|
|
|
|
RE: How to secure Exchange - 27.Aug.2007 9:25:37 AM
|
|
|
warrenlee
Posts: 85
Joined: 24.Aug.2007
From: Hong Kong
Status: offline
|
#1: What is the error message when user login? Are you setup password policy (e.g. minimum 8 char. etc)? It supports "User must change password at next logon". Otherwise, user can press "Alt-Ctrl-Del", then select "Change Password...".
#2: It uses for OWA. It isn't a Web Exchange Administratore interface.
_____________________________
Warren Lee (MS MVP, MCTS and MCSE, VMware VCP)
Hong Kong
...... Why the life is colorful? Because we can't predict future.
|
|
|
|
|
RE: How to secure Exchange - 28.Aug.2007 12:37:26 AM
|
|
|
goharkhan
Posts: 81
Joined: 5.Jul.2007
Status: offline
|
1.No error massage only ask user name and password again and again.this error occures when users want to create POP3 and SMTP account in in outlook or access OWA.BUT when login in my domain using same account then its do ask for changing password and giving new password but this not good because some users are out of my domain and they never login directly to domain useing their user name and password they just use their email ID( becuase domain login and email IDs are same).
2.Yes my password policy is mininum 8 char.
3.The issue in not with windows domain login page it is with outlook email creation and loging through OWA,so how can they press ALT-Crl-Del.
|
|
|
|
|
RE: How to secure Exchange - 28.Aug.2007 6:23:40 AM
|
|
|
warrenlee
Posts: 85
Joined: 24.Aug.2007
From: Hong Kong
Status: offline
|
By default, the change password feature is disabled in OWA. You need to configure it manually. Please find the steps in below web site.
Implementing the Change Password feature with Outlook Web Access :-
http://support.microsoft.com/kb/297121
Remark: POP3 isn't supported change password feature.
_____________________________
Warren Lee (MS MVP, MCTS and MCSE, VMware VCP)
Hong Kong
...... Why the life is colorful? Because we can't predict future.
|
|
|
|
|
RE: How to secure Exchange - 17.Sep.2007 7:31:56 AM
|
|
|
goharkhan
Posts: 81
Joined: 5.Jul.2007
Status: offline
|
hello warrenlee,
I tried the link you provided i was able to bring the change password button and did other setting shown in the link.But i login to OWA and click on the change password and provide all the information it need i.e domain name, account, old password and new password and then click ok it gives me error:object required.
one time i succesfuly changed a test account password but know when i try to rechange it gives me error:
Either the password is too short or password uniqueness restrictions have not been met.
but most times it give me error object required
|
|
|
|
|
RE: How to secure Exchange - 18.Sep.2007 2:54:48 AM
|
|
|
goharkhan
Posts: 81
Joined: 5.Jul.2007
Status: offline
|
hi i came accross this post http://forums.msexchange.org/Owa_Error_-2147024891_while_changing_password/m_170043200/tm.htm it says
See if this helps
1. Please ensure that you have asp files under IISADMPWD on both FE and BE.
2. Check whether this is associated to "Exchange application pool" and not "Default application pool"
IISreset
i did the second option but i cannot understand the first option regarding asp files how can i bring asp files under IISADMPEWD.?
|
|
|
|
|
RE: How to secure Exchange - 18.Sep.2007 4:18:03 AM
|
|
|
pjhutch
Posts: 3040
Joined: 21.Jul.2001
From: W Yorks, England
Status: offline
|
See following article on installing IISADMPWD:
http://support.microsoft.com/kb/555071/en-us
_____________________________
Peter Hutchison MCP
Exchange Administrator
University of Huddersfield
|
|
|
|
|
RE: How to secure Exchange - 18.Sep.2007 7:27:23 AM
|
|
|
goharkhan
Posts: 81
Joined: 5.Jul.2007
Status: offline
|
hi,
i did evry thing mentioned in the link but still i recieve the same error.
|
|
|
|
|
RE: How to secure Exchange - 22.Sep.2007 1:01:38 AM
|
|
|
goharkhan
Posts: 81
Joined: 5.Jul.2007
Status: offline
|
I still have the problem i cannot change password through OWA change password bottun.it still says object required.
Any one can help or it ever worked for any one?
|
|
|
|
|
RE: How to secure Exchange - 22.Sep.2007 4:46:42 AM
|
|
|
pjhutch
Posts: 3040
Joined: 21.Jul.2001
From: W Yorks, England
Status: offline
|
I assume you have applied the SSL certificate to your OWA website?
Have you checked that the Certificate Path is ok? If not check that the CA and Intermediate CA root certs are installed on server.
_____________________________
Peter Hutchison MCP
Exchange Administrator
University of Huddersfield
|
|
|
|
|
RE: How to secure Exchange - 23.Sep.2007 6:11:35 AM
|
|
|
goharkhan
Posts: 81
Joined: 5.Jul.2007
Status: offline
|
I have installed Certificate from local CA.and i think it is working ok
|
|
|
|
 New Messages |
 No New Messages |
 Hot Topic w/ New Messages |
 Hot Topic w/o New Messages |
 Locked w/ New Messages |
 Locked w/o New Messages |
|
 Post New Thread
Reply to Message
Post New Poll
Submit Vote
Delete My Own Post
Delete My Own Thread
Rate Posts |
|
Printable Version
