SSL redirect in OWA 2007 with 03 and 07 MBXs (Full Version)

All Forums >> [Microsoft Exchange 2007] >> Outlook Web Access



Message

hywaydave -> SSL redirect in OWA 2007 with 03 and 07 MBXs (2.Jul.2008 12:53:59 PM)

Environment:

1 - 2007 CAS/HT
1 - 2007 MBX
1 - 2003 BE MBX

What is the proper way to redirect http to https on the CAS and still have OWA work whether the user's mailbox is on a 2007 Exchange server or 2003?

My redirect is working fine for users on the 2003 BE server but when a 2007 mailbox user logs onto OWA they receive the following error in IE: "%1 is not a valid Win32 application." 

If I replace /exchange with /owa then OWA will continue to log them in and then they can access their mailbox, etc.  Any ideas?

Thanks,

Dave



Jesper Bernle -> RE: SSL redirect in OWA 2007 with 03 and 07 MBXs (2.Jul.2008 4:27:34 PM)

You should use /owa and not /exchange to make redirect work for both Exchange 2003 MBX and 2007´s.



hywaydave -> RE: SSL redirect in OWA 2007 with 03 and 07 MBXs (2.Jul.2008 4:33:47 PM)

I think you have that backwards.  I've read that /exchange can redirect to both.  But how should I have CAS configured initially in IIS so that it redirects to https?  Right now I have a default document that redirects to http://URL/exchange.



Jesper Bernle -> RE: SSL redirect in OWA 2007 with 03 and 07 MBXs (2.Jul.2008 4:49:48 PM)

Yes, you are correct. /exchange is correct. Sorry for that.

But, if you already have a page redirecting to http://URL/exchange then why not just alter it to https://URL/exchange?



hywaydave -> RE: SSL redirect in OWA 2007 with 03 and 07 MBXs (2.Jul.2008 5:00:55 PM)

Well, my home directory within the default web site is set to /exchange with the option "a directory below URL entered".  I have a separate web site that has a default page redirecting to https://URL

Not sure why it ended up being that way, I wasn't ever able to get my custom error 403;4 redirection page to https://URL/exchange

Could someone please tell me how IIS should be set up so a user has to be redirected to https and both 2003 and 2007 mailboxes can be accessible?

Thanks,

Dave



Jesper Bernle -> RE: SSL redirect in OWA 2007 with 03 and 07 MBXs (2.Jul.2008 5:16:27 PM)

Since we now agree upon /exchange beeing the correct path, why shouldn´t this work? How to redirect to a secure exchange virtual directory and enable Forms-based authentication



hywaydave -> RE: SSL redirect in OWA 2007 with 03 and 07 MBXs (3.Jul.2008 9:52:25 AM)

And this should then work whether you have a mailbox on 2007 or 2003?



hywaydave -> RE: SSL redirect in OWA 2007 with 03 and 07 MBXs (3.Jul.2008 10:25:58 AM)

When I follow the directions in the link you provided.  The only thing that is displayed in IE is the code that was put into owahttps.asp

Also, these directions were written before Exchange 2007, so the ExchangeApplicationPool was not an option.  I tried MSExchangeOWAAppPool but that did not work.  Any suggestions?



Sembee -> RE: SSL redirect in OWA 2007 with 03 and 07 MBXs (3.Jul.2008 10:49:54 AM)

My personal preference is to not even open port 80 on the firewall at all. I don't want anonymous traffic anywhere near the Exchange server. Make the users put https in to the URL. They learn very quickly.

The instructions for Exchange 2003 work the same for Exchange 2007 - as long as you have asp support enabled in IIS. It sounds like you don't. Asp is not asp.net support - they are two different things.
Although they are slightly different if the HOST is Windows 2008, not Windows 2003. You haven't said which version of Windows it is installed on.

Simon.



hywaydave -> RE: SSL redirect in OWA 2007 with 03 and 07 MBXs (3.Jul.2008 10:52:59 AM)

It's on Windows 2003 x64 R2 SP2.

Within IIS, it shows as Active Server Pages is allowed.



Sembee -> RE: SSL redirect in OWA 2007 with 03 and 07 MBXs (3.Jul.2008 3:14:47 PM)

These are the instructions from Microsoft for Exchange 2007.

http://technet.microsoft.com/en-us/library/aa998359(EXCHG.80).aspx

Those work.

Simon.



hywaydave -> RE: SSL redirect in OWA 2007 with 03 and 07 MBXs (3.Jul.2008 4:33:11 PM)

I need my users to be able to go to http://email.domain.com and have this redirect to a SSL web site that both 2007 and 2003 mailbox users can access.



Sembee -> RE: SSL redirect in OWA 2007 with 03 and 07 MBXs (4.Jul.2008 5:55:17 PM)

You have all of the instructions required to do that.
You create a default page in the web site to pick up anything that hits the root of the site, and the asp page which replaces the require SSL error page. Redirect to /exchange and not /owa which will provide support for both formats.

However before you change anything you should ensure that https://host.domain.com/exchange works as expected.

Simon.



karbo -> RE: SSL redirect in OWA 2007 with 03 and 07 MBXs (15.Jul.2008 9:52:22 PM)

Quick note:

If you are seeing the actual code displayed in IE. Its a sure bet that ASP is not being executed. If the file ends in .asp, make sure that Active Server Pages is enabled under web extensions. Outside of any other problems that's why your initial redirect isn't working.

Karbo



Page: [1]